https://techcrunch.com/2024/02/01/cisa-federal-agencies-disconnect-ivanti-vpn/

U.S. cybersecurity agency CISA has ordered federal agencies to urgently disconnect Ivanti VPN appliances given the risk of malicious exploitation due to multiple software flaws.

In an update to an emergency directive first published last week, CISA is now mandating that all federal civilian executive branch agencies — a list that includes the Homeland Security and the Securities and Exchange Commission — disconnect all Ivanti VPN appliances due to the “serious threat” posed by numerous zero-day vulnerabilities currently being exploited by malicious hackers.