The Blog

2020-

2020-12-14 c
NYET, IT'S NOT THE RUSSIANS

Cybersecurity and Infrastructure Security Agency.

WASHINGTON – The Cybersecurity and Infrastructure Security Agency (CISA) tonight issued Emergency Directive 21-01, in response to a known compromise involving SolarWinds Orion products that are currently being exploited by malicious actors. This Emergency Directive calls on all federal civilian agencies to review their networks for indicators of compromise and disconnect or power down SolarWinds Orion products immediately.

The compromise of SolarWinds’ Orion Network Management Products poses unacceptable risks to the security of federal networks,” said CISA Acting Director Brandon Wales. “Tonight’s directive is intended to mitigate potential compromises within federal civilian networks, and we urge all our partners—in the public and private sectors—to assess their exposure to this compromise and to secure their networks against any exploitation.

This is the fifth Emergency Directive issued by CISA under the authorities granted by Congress in the Cybersecurity Act of 2015. All agencies operating SolarWinds products should provide a complete report to CISA by 12 pm Eastern Standard Time on Monday, December 14, 2020. (read more)

P. S. Dominion Voting System also uses SolarWind products.

______________________

Permission is hereby granted to any and all to copy and paste any entry on this page and convey it electronically along with its URL,
______________________