Eliminate VPN vulnerabilities with Cloudflare One
On January 19, 2024, the Cybersecurity & Infrastructure Security Agency (CISA) issued Emergency Directive 24-01 to mitigate Ivanti Connect Secure and Ivanti Policy Secure vulnerabilities. U.S. Federal agencies were directed to apply a mitigation within three days. However, further monitoring revealed that threat actors continued exploiting the vulnerabilities. CISA then instructed agencies to disconnect all instances of these products from their networks and perform several actions before bringing them back into service. The incident highlights the risks associated with legacy security paradigms and emphasizes the importance of adopting modern solutions like Cloudflare's Secure Access Service Edge (SASE) platform, which offers Zero Trust principles and least privilege access control.
Company
Cloudflare
Date published
March 6, 2024
Author(s)
Dan Hall, Michael Keane
Word count
926
Language
English
Hacker News points
None found.