Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

CISA BOD 22-01 iOS KEV patch order

Public Sector Action
First reported
Last updated
Happening score
H score 41
1 unique sources, 2 articles

Summary

Hide ▲

CISA ordered Federal Civilian Executive Branch agencies to secure affected iOS devices by March 26 after adding three Coruna vulnerabilities to its Known Exploited Vulnerabilities catalog. The directive matters because the flaws were linked to cyberespionage and crypto-theft activity, raising immediate federal remediation pressure. CISA also urged all organizations to patch the issues or stop using the product if fixes are unavailable.

Related Happenings

CISA revises CIRCIA town hall schedule

Public Sector Action
First: 26.05.2026 15:00 Last: 26.05.2026 15:00 Sources 1

About this happening: CISA **revised the schedule** for **virtual town halls** on the **CIRCIA rulemaking**, reopening stakeholder engagement on a cybersecurity reporting rule that will affect **critic...

Open Happening

CISA orders FCEB patching for CVE-2026-9082

Public Sector Action
First: 26.05.2026 11:46 Last: 26.05.2026 11:46 Sources 1

About this happening: **CISA** added **CVE-2026-9082** to the **KEV Catalog** and ordered **FCEB agencies** to patch **Drupal** by **May 27**, turning an actively exploited flaw into a mandatory federa...

Open Happening

Congress demands CISA answers on GitHub credential leak

Public Sector Action
First: 22.05.2026 19:34 Last: 22.05.2026 19:34 Sources 1

About this happening: **Lawmakers in both houses of Congress** demanded answers from **CISA** after a contractor exposed **AWS GovCloud keys** and other secrets on **public GitHub**. The letters presse...

Open Happening

CISA launches KEV Nomination Form

Public Sector Action
First: 21.05.2026 15:00 Last: 21.05.2026 15:00 Sources 1

About this happening: CISA launched a **new Nomination Form** for the **KEV catalog**, giving **researchers, vendors, and industry partners** a direct way to report **known exploited vulnerabilities**....

Open Happening

CISA KEV remediation order for Cisco Catalyst SD-WAN Controller CVE-2026-20182

Public Sector Action
First: 15.05.2026 08:28 Last: 15.05.2026 08:28 Sources 1

About this happening: **CISA** added **CVE-2026-20182** to the **KEV catalog** and ordered **Federal Civilian Executive Branch agencies** to remediate **Cisco Catalyst SD-WAN Controller** by **May 17,...

Open Happening

Timeline

  1. 06.03.2026 17:57 2 articles · 2mo ago

    CISA adds three Coruna iOS flaws to KEV and orders federal patching

    Legal Policy Action Update

    CISA added three of the 23 Coruna iOS vulnerabilities to its Known Exploited Vulnerabilities catalog and ordered Federal Civilian Executive Branch agencies to secure affected devices by March 26 under Binding Operational Directive (BOD) 22-01. The directive followed reporting that the flaws were exploited in spyware and crypto-theft attacks using the Coruna exploit kit, and CISA urged all organizations to apply vendor mitigations or discontinue use if fixes are unavailable.

    Show sources
    Open in new tab