CISA Gives Civilian Agencies Five Days to Fix VMware Flaws Under Emergency Directive
European authorities arrest three gang members suspected of ATM robberies, DHS pauses disinformation board, Democratic lawmakers demand probe of ID.me, India sticks to 6-hour breach notices, more
An emergency directive from the Cybersecurity and Infrastructure Security Agency (CISA) ordered all federal civilian agencies to fix flaws in widely used software made by VMware that officials say foreign government-linked hackers are likely moving to exploit.
The directive gives agencies five days to either update the vulnerable software or remove it from their networks. VMware issued a fix on April 6 for the software flaws, which could allow hackers to access computer files and go further into a network remotely. Within two days of the fix's release, hackers figured out a way to break into computers using the vulnerabilities, according to CISA. VMWare released software updates for newly discovered vulnerabilities that CISA has ordered agencies to address. (Sean Lyngaas / CNN)
Related: Fedscoop, The SIGNAL Blog, Federal News Network, The Record by Recorded Future, InsideCyberSecurity.com, Bleeping Computer. The Hill: Cybersecurity, WND, protocol, LA Daily News, Raw Story, Engadget, CI…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.