News Flash Home
The original item was published from 3/15/2021 4:46:19 PM to 3/16/2022 12:00:07 AM.

News Flash

Federal Government

Posted on: March 15, 2021

[ARCHIVED] CISA Issues Emergency Directive

The Cybersecurity and Infrastructure Security Agency (CISA) partners have observed active exploitation of vulnerabilities in Microsoft Exchange on-premises products. Please review CISA issued ED 21-02 for Microsoft Exchange on-premises products to update or disconnect the products from their networks until updated with the Microsoft patch.

The seriousness of this vulnerability cannot be overstated; the exploitation of it is widespread and is indiscriminate. This vulnerability is already being actively exploited in many thousands of systems and could allow criminal actors to engage in acts threatening to the continuity of operations, such as ransomware, even after patching Microsoft Exchange.

 Everyone using Microsoft Exchange on-premise products needs to immediately: 

  • Check for signs of compromise;
  • If evidence of compromise is found, assume that your organization's network identity has been compromised and begin incident response procedures;
  • Patch Microsoft Exchange with the vendor released patches;
  • If unable to patch immediately or remove the Microsoft Exchange from the network immediately, CISA strongly recommends following alternative mitigations found in Microsoft's blog on Exchange Server Vulnerabilities Mitigations. This should not be taken as an adequate solution for patching. 

Please immediately speak with your IT officials to determine what steps your organization has taken, and if your organization does not have the technical capability to verify network integrity, please consider bringing in a third party to assist you as soon as possible.

Contact: Paul Penna, Legislative Analyst,, 609 695-3481, x110.

Facebook Twitter Email

Other News in Federal Government

Federal Government Shutdown Averted

Posted on: October 6, 2023

Prepare for FY 2024 EPA Brownfield Grants

Posted on: February 17, 2023

FY2023 Federal Omnibus Budget Passed

Posted on: January 9, 2023

SHBP Update: No Relief In New Year

Posted on: December 30, 2022

Federal Budget Update

Posted on: December 23, 2022

Federal Budget Update

Posted on: December 19, 2022