"CISA has issued a Binding Operational Directive that orders federal civilian executive branch agencies to inventory and replace "end-of-support" edge devices - hardware and software that vendors no longer patch or maintain - in a bid to close one of government IT's most persistent intrusion paths. The directive, published this week, requires agencies to immediately update still-supported equipment and, within three months, produce a comprehensive inventory of edge devices to identify those past vendor support deadlines."
"CISA is acting after years of watching obsolete edge hardware morph into reliable break-in tools. Firewalls, VPN gateways, routers, and other outward-facing security gear sit right on the network's front line, and when one is compromised, it can open a surprisingly short path to everything behind it. When vendors stop issuing patches, newly discovered flaws remain permanently exposed, turning those devices into what CISA calls a "substantial and constant" risk to federal networks."
Cybersecurity and Infrastructure Security Agency (CISA) issued a Binding Operational Directive requiring federal civilian executive branch agencies to inventory and replace end-of-support edge devices—hardware and software that vendors no longer patch or maintain. Agencies must immediately update still-supported equipment, produce a comprehensive inventory within three months, and remove unsupported devices within about a year. CISA will publish and maintain a list of edge devices reaching or nearing end of support and requires agencies to implement tracking within two years to prevent future use of unmaintained equipment. Unsupported firewalls, routers, VPN gateways and gateway appliances pose ongoing, high-risk intrusion paths.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]