The Cybersecurity and Infrastructure Security Agency (CISA) announced today that it has retired ten Emergency Directives issued between 2019 and 2024, the largest batch retired at one time. The directives, which were created to address urgent cyber threats to Federal Civilian Executive Branch agencies, are now considered redundant after the required actions were implemented or because the vulnerabilities have been incorporated into the agency’s Known Exploited Vulnerabilities catalog. The retirement follows a review that found the actions outlined in the directives are covered by Binding Operational Directive 22‑01, which reduces the risk of known exploited vulnerabilities. The closed directives include ED 19‑01, 20‑02 through 20‑04, 21‑01 through 21‑04, 22‑03, and 24‑02. CISA said the move reflects its ongoing commitment to strengthening federal systems and advancing secure‑by‑design principles.
https://www.cisa.gov/news-events/news/cisa-retires-ten-emergency-directives-marking-era-federal-cybersecurity
Made by AI. If you spot anything of concern write us at contact@cybach.com. We’ll promptly correct irregularities.