NewsMore in News→
CISA Mandates 3-Day Patch Deadline for Critical Bugs Amid AI-Driven Threats
Key Takeaways
- CISA issued a binding operational directive requiring federal agencies to patch critical vulnerabilities within three days.
- The directive is driven by AI advancements that enable faster vulnerability discovery and exploitation.
- A four-factor rubric determines patch urgency, with the most critical bugs requiring a three-day turnaround and forensic triage.
- The new directive replaces older 2019 and 2021 orders that allowed 15-30 days for critical patches.
DE
DT Editorial Team··via wired.com