CISA directive requires agency action amid discovery of Microsoft Exchange vulnerability

A new emergency directive from the Cybersecurity and Infrastructure Security Agency requires civilian departments and agencies to immediately patch or disconnect Microsoft Exchange products on their networks, and “search for known indicators of compromise.”

Emergency Directive 21-02 “is in response to observed active exploitation of these products using previously unknown vulnerabilities,” according to a statement released today from the cyber agency. “CISA also issued an activity alert to provide additional information and to encourage other public and private...