The Cybersecurity and Infrastructure Security Agency (CISA), on Wednesday, Ordered Federal Agencies to immediately Investigate, Patch, or Disconnect, their Systems from a Microsoft Email Application after the Company Discovered a Vulnerability exploited by Chinese Hackers.

The Order came the day after Microsoft Warned that a Chinese State-Sponsored Hacking Group known as, Hafnium, was attempting to take Advantage of previously Unknown Vulnerabilities in the Email Application Exchange Server. Microsoft described the Group as a "highly skilled and sophisticated actor," and noted that it had previously Targeted Groups across Multiple Fields, including Law Firms, Think Tanks, Defense Contractors, and Infectious Disease Researchers. The Company urged Groups using Microsoft Exchange Server to Deploy a Variety of Updates to Ensure that the Chinese Hackers and other Potential Malicious Foreign Hackers could Not access Systems.

Acting CISA Director, Brandon Wales, said in a Statement, Wednesday, that the Emergency Directive would Help to Tackle potential Dangers of Newly Discovered Vulnerability posed to Federal Networks. "This Emergency Directive will help us secure federal networks against the immediate threat while CISA works with its interagency partners to better understand the malicious actor's techniques and motivations to share with our stakeholders," Wales said. "The swiftness with which CISA issued this Emergency Directive reflects the seriousness of this vulnerability and the importance of all organizations - in government and the private sector

CISA issued the Directive after Consulting with Microsoft, the National Security Agency, and other Security Researchers to determine the Best ways to approach the Security Flaw. Microsoft released a Patch for the Vulnerability earlier on Wednesday.

House Homeland Security Committee Ranking Mmember John Katko (R-NY, 24th District) said in a Statement Wednesday, that he saw the Directive as an "important first step," but urged further Action to Fully address the Incident. "This appears to be yet another significant cyber incident impacting a wide range of potential victims within the government and the private sector," Katko said. "The intent of Chinese-backed hackers to exploit vulnerabilities like this across American infrastructure is sadly nothing new." "There is still much more to learn about the extent of this cyber campaign," he added. "My team is in touch with CISA, and I look forward to formal briefings in the near future."

CISA has only issued Emergency Directives a handful of times since its establishment in 2018. The Agency's most Recent Emergency Directive was put out as a result of the Discovery of the Breach that has become known as the SolarWinds Hack, with CISA ordering All Agencies to immediately Disconnect from All Systems related to Products from IT Group SolarWinds.

The Hack, which U.S. Intelligence Officials have said was "likely" carried out by Russia, Compromised at least Nine Federal Agencies and 100 Private Sector Groups, including both the Department of Homeland Security and Microsoft.

CISA also Issued an Emergency Directive, last year, Ordering Agencies to Update a Major Vulnerability within the Microsoft Windows Server Program within 24 hours due to Evidence that Hackers could use it to take Control of Critical systems.










NYC Wins When Everyone Can Vote! Michael H. Drucker