US government agencies told to patch SolarWinds flaws now

The US Cybersecurity and Infrastructure Security Agency (CISA) has asked all US government agencies to update their SolarWinds Orion installations to the latest version, by the end of business hours on December 31, 2020.

According to reports, CISA’s Supplemental Guidance to Emergency Directive 21-01 orders all agencies using Solarwinds’ Orion to update to the latest 2020.2.1HF2 version. 

Source link