Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

CISA BOD 22-01 order for FCEB iOS patching

Public Sector Action
First reported
Last updated
Happening score
H score 51
1 unique sources, 1 articles

Summary

Hide ▲

CISA ordered FCEB agencies to secure devices against DarkSword-linked iOS flaws, tightening federal exposure to attacks that enabled sandbox escape and remote code execution. The directive added three CVEs to the actively exploited catalog and required action within two weeks by April 3. It also told agencies to apply vendor mitigations or stop using the product if mitigations are unavailable.

Related Happenings

CERT-In 12-hour KEV remediation guidance

Advisory/Mitigation
First: 26.05.2026 13:30 Last: 26.05.2026 13:30 Sources 1

About this happening: CERT-In set a **12-hour** expectation for containing or remediating **known exploited vulnerabilities** on **internet-facing and crown-jewel systems**, sharply shortening response...

Open Happening

CISA KEV order for Copy Fail on federal Linux devices

Public Sector Action
First: 08.05.2026 10:45 Last: 08.05.2026 10:45 Sources 1

About this happening: **CISA** added **Copy Fail** to the **Known Exploited Vulnerabilities (KEV) Catalog**, making the Linux flaw a federal remediation priority. The agency ordered **federal agencies*...

Open Happening

Cisco ASA/FTD code execution and authentication bypass flaws (multiple vulnerabilities)

Vulnerability
First: 24.04.2026 20:06 Last: 24.04.2026 20:06 Sources 1

About this happening: **Cisco ASA/FTD** vulnerabilities **CVE-2025-20333** and **CVE-2025-20362** are still under **active exploitation** and can be chained for **unauthenticated remote control** of af...

Open Happening

CISA KEV directive for CVE-2026-20133

Public Sector Action
First: 21.04.2026 15:30 Last: 21.04.2026 15:30 Sources 1

About this happening: On **Monday, April 21, 2026**, **CISA** added **CVE-2026-20133** to the **KEV Catalog** and ordered **FCEB agencies** to secure their networks by **Friday, April 24**. The directi...

Open Happening

CISA Apache ActiveMQ CVE-2026-34197 mitigation order

Advisory/Mitigation
First: 21.04.2026 14:17 Last: 21.04.2026 14:17 Sources 1

About this happening: **CISA** ordered **FCEB agencies** to secure **Apache ActiveMQ** servers by **April 30** after **CVE-2026-34197** was confirmed **actively exploited**. The flaw can allow **arbitr...

Open Happening

Timeline

  1. 23.03.2026 10:37 2 articles · 2mo ago

    CISA orders Federal Civilian Executive Branch patching of DarkSword-abused iOS flaws

    Legal Policy Action Update

    CISA added CVE-2025-31277, CVE-2025-43510, and CVE-2025-43520 to its actively exploited catalog and ordered Federal Civilian Executive Branch agencies to secure affected iOS devices within two weeks by April 3 under BOD 22-01. The directive told agencies to apply vendor mitigations or discontinue use of the product if mitigations are unavailable, after DarkSword-linked attacks were tied to cryptocurrency theft, cyberespionage, sandbox escape, privilege escalation, and remote code execution on unpatched iPhones.

    Show sources
    Open in new tab