US government tells federal agencies they have 48 hours to get rid of Ivanti VPN technology after breaches

US government agencies using Ivanti Connect Secure and Ivanti Policy Secure have been told to immediately disconnect these solutions and not re-enable them until they are absolutely certain that they have been properly patched and their networks have been disinfected against possible hacker attacks.

This sharp warning was issued by the Cybersecurity and Infrastructure Security Agency (CISA), as part of its emergency directive 24-01.