The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has issued a supplemental directive requiring all federal agencies to identify Microsoft Exchange servers in their environments impacted by ProxyLogon flaws within five days and take the necessary steps to secure them.
The new directive demands agencies to accelerate the mitigation process and extends the Emergency Directive 21-02 issued by the DHS agency on March 3, 2021.