CISA gives US federal agencies three days to fix a VPN bug under attack by a ransomware gang
CISA gives US federal agencies three days to fix a VPN bug under attack by a ransomware gang
In Brief
Posted:
A ransomware group is actively exploiting an unpatched flaw in security tools used across the U.S. federal government, prompting the U.S. cybersecurity agency CISA to order all civilian agencies to remediate the vulnerability by end of day Wednesday.
Cybersecurity firm Check Point Software said the bug affects several of its remote access tools, firewalls, and VPNs, which act as digital gatekeepers to protect company networks from unauthorized access.
The company said in a separate blog post that it had confirmed the bug was being exploited by a known ransomware group called Qilin to hack into “a few dozen targeted organizations globally” that rely on the affected security tools.
The hacks began on May 7 but activity began to rise last week, per Check Point.
Given the risk to the federal government’s enterprise network, CISA on Monday ordered all civilian federal agencies — such as Homeland Security, the Department of State, and the Treasury — to fix any instances where agencies are using the affected products by end-of-day June 11. The agency cited BOD 22-01, its operational guidance memo that allows it to instruct agencies to take security action when there is an active cyber threat to government networks.
Newsletters
Subscribe for the industry’s biggest tech news
Related
Latest in Security
Patrocinados
Patrocinados
Patrocinados
Patrocinados
Publicaciones
Categorías
Read More
This AI Tool Doesn't Help With Homework. It Does It for You Einstein is a new AI tool that can watch lecture videos, read essays, write papers, complete quizzes and basically take your class for you. Macy is a writer on the AI Team. She covers how AI is changing daily life and how to make the most of it. This includes writing about consumer AI products and their real-world...
Indonesia earthquake: Magnitude 7.4 quake kills oneMagnitude 7.4 earthquake hits off Indonesia, killing one55 minutes agoAstudestra Ajengrastri,Jakarta,Abd Rahman Muchtar,ManadoandKelly NgReutersWhile the region sees high levels of seismic activity, some say this was one of the strongest quakes they've experienced in recent yearsA 7.4-magnitude earthquake struck in the Molucca Sea off...
We Meet Ultimate Grogu: The $600 Lifelike Star Wars Toy That Moves Like a Child Why You Can Trust CNET Our expert, award-winning staff selects the products we cover and rigorously researches and tests our top picks. If you buy through our links, we may get a commission. Reviews ethics statement Hasbro's debuting its lifelike Grogu filled with sensors and motors, and we get to see it...
Miami: Suspected boat explosion injures 11AFP via Getty ImagesMiami's Haulover Sandbar, the location of the blast.US authorities are investigating the cause of an explosion on board a boat that injured 11 people in Miami, southern Florida.Miami-Dade Fire Rescue Battalion Chief Juan Arias told reporters that emergency crews responded to reports of a "possible boat explosion" at Haulover Sandbar,...
Iran and US report new wave of air strikes in GulfGetty ImagesThe Strait of Hormuz remains blocked as attacks continue despite ceasefire negotiationsAir strikes resumed between the US and Iran over the weekend as each side claimed to have hit military targets near the Strait of Hormuz.The US Central Command (Centcom) said it conducted "self-defense strikes on Iranian radar and command and...
