Ivanti-linked breach of CISA potentially affected more than 100,000 individuals | CyberScoop<\/title> <meta name=\"description\" content=\"A senior CISA official shared details with CyberScoop regarding the incident after the agency notified Congress about it on Friday.\"> <link rel=\"canonical\" href=\"https:\/\/cyberscoop.com\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals\/\"> <meta property=\"og:locale\" content=\"en_US\"> <meta property=\"og:type\" content=\"article\"> <meta property=\"og:title\" content=\"Ivanti-linked breach of CISA potentially affected more than 100,000 individuals\"> <meta property=\"og:description\" content=\"A senior CISA official shared details with CyberScoop regarding the incident after the agency notified Congress about it on Friday.\"> <meta property=\"og:url\" content=\"https:\/\/cyberscoop.com\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals\/\"> <meta property=\"og:site_name\" content=\"CyberScoop\"> <meta property=\"article:published_time\" content=\"2024-03-29T20:05:16+00:00\"> <meta property=\"og:image\" content=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-5.jpg\"> <meta property=\"og:image:width\" content=\"1024\"> <meta property=\"og:image:height\" content=\"683\"> <meta property=\"og:image:type\" content=\"image\/jpeg\"> <meta name=\"author\" content=\"Tim Starks\"> <meta name=\"twitter:card\" content=\"summary_large_image\"> <meta name=\"twitter:creator\" content=\"@timstarks\">  <link rel=\"dns-prefetch\" href=\"\/\/securepubads.g.doubleclick.net\">\n<link rel=\"dns-prefetch\" href=\"\/\/use.typekit.net\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Feed\" href=\"https:\/\/cyberscoop.com\/feed\/\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Comments Feed\" href=\"https:\/\/cyberscoop.com\/comments\/feed\/\"> <link rel=\"stylesheet\" id=\"all-css-2\" href=\"https:\/\/cyberscoop.com\/wp-includes\/css\/dist\/block-library\/style.min.css?m=1710875768g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-6\" href=\"https:\/\/cyberscoop.com\/wp-content\/mu-plugins\/search\/elasticpress-next\/dist\/css\/related-posts-block-styles.min.css?m=1710299038g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-8\" href=\"https:\/\/cyberscoop.com\/wp-content\/themes\/scoopnewsgroup\/dist\/css\/frontend.css?m=1711491965g\" type=\"text\/css\" media=\"all\">\n<link rel=\"stylesheet\" id=\"typekit-css\" href=\"https:\/\/use.typekit.net\/itk2qbh.css?ver=74528d75ce0daeb8628a\" media=\"all\"> <link rel=\"https:\/\/api.w.org\/\" href=\"https:\/\/cyberscoop.com\/wp-json\/\"><link rel=\"alternate\" type=\"application\/json\" href=\"https:\/\/cyberscoop.com\/wp-json\/wp\/v2\/posts\/79945\"><link rel=\"EditURI\" type=\"application\/rsd+xml\" title=\"RSD\" href=\"https:\/\/cyberscoop.com\/xmlrpc.php?rsd\">\n<meta name=\"generator\" content=\"WordPress 6.4.3\">\n<link rel=\"shortlink\" href=\"https:\/\/cyberscoop.com\/?p=79945\">\n<link rel=\"alternate\" type=\"application\/json+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals%2F\">\n<link rel=\"alternate\" type=\"text\/xml+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals%2F&format=xml\">   <link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=32\" sizes=\"32x32\">\n<link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=192\" sizes=\"192x192\">\n<link rel=\"apple-touch-icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=180\">\n<meta name=\"msapplication-TileImage\" content=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=270\"> <\/head><body class=\"post-template-default single single-post postid-79945 single-format-standard\" id=\"readabilityBody\"> <a href=\"https:\/\/cyberscoop.com\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals\/#main\" class=\"skip-to-content-link visually-hidden-focusable\">Skip to main content<\/a> <\/p>\n<div class=\"ad ad--top ad--top-desktop\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p> <main id=\"main\" role=\"main\" tabindex=\"-1\"> <\/p>\n<div class=\"ad ad--top ad--top-mobile\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<section id=\"stickybar\" class=\"stickybar stickybar--newsletter js-stickybar\" readability=\"0.82\"> <button class=\"stickybar__close js-stickybar-close\" aria-controls=\"stickybar\"> <svg class=\"icon icon--close\" width=\"21\" height=\"22\" viewBox=\"0 0 21 22\" fill=\"none\"><path d=\"m.822.518-.805.805L9.695 11 .017 20.678l.805.805 9.678-9.678 9.677 9.678.806-.805L11.305 11l9.678-9.677-.806-.805-9.677 9.677L.822.518Z\" fill=\"currentColor\" \/><\/svg> <span class=\"visually-hidden\">Close<\/span> <\/button> <\/section>\n<article class=\"single-article content\">\n<div class=\"single-article__container js-single-article-content\">\n<header class=\"single-article__header \" readability=\"25.240702479339\">\n<div class=\"single-article__header-content\" readability=\"30.011811023622\">\n<ul class=\"single-article__eyebrow\">\n<li class=\"single-article__category\"> <a class=\"single-article__category-link\" href=\"https:\/\/cyberscoop.com\/news\/cybersecurity\/\"> <span>Cybersecurity<\/span> <\/a> <\/li>\n<\/ul>\n<p> A senior CISA official shared details with CyberScoop regarding the incident after the agency notified Congress about it on Friday. <\/p>\n<\/p><\/div>\n<div class=\"single-article__cover-wrap\">\n<figure class=\"single-article__cover\"> <img data-recalc-dims=\"1\" fetchpriority=\"high\" width=\"640\" height=\"427\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals.jpg?resize=640%2C427&ssl=1\" class=\"single-article__cover-image wp-post-image\" alt decoding=\"async\" fetchpriority=\"high\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-5.jpg 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-5.jpg?resize=300,200 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-5.jpg?resize=768,512 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-5.jpg?resize=600,400 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-5.jpg?resize=252,168 252w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-5.jpg?resize=505,337 505w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-5.jpg?resize=1012,675 1012w\" sizes=\"(max-width: 1012px) 100vw, 1012px\"><figcaption> Brandon Wales of the Cybersecurity and Infrastructure Security Agency speaks during a Senate Homeland Security and Governmental Affairs Committee hearing on May 11, 2021 in Washington, D.C. (Photo by Tasos Katopodis\/Getty Images) <\/figcaption><\/figure>\n<\/p><\/div>\n<\/header>\n<div class=\"single-article__content\">\n<div class=\"single-article__content-inner has-drop-cap\"> <html readability=\"47.124679423949\"><body readability=\"100.91000671592\"><\/p>\n<p>The Cybersecurity and Infrastructure Security Agency notified lawmakers on Friday that the recent breach of its chemical plant security tool that was linked to flawed Ivanti products potentially affected more than 100,000 individuals, triggering disclosure to Congress under a federal cybersecurity law. <\/p>\n<p>The size of the breach makes it a \u201cmajor incident\u201d under the threshold established by the Federal Information Security Management Act. Hackers breached the Chemical Security Assessment Tool (CSAT), which houses information about chemical plant security plans, as well as another CISA system, <a href=\"https:\/\/www.cisa.gov\/resources-tools\/services\/cisa-gateway\">CISA Gateway<\/a>, which is a portal for tools to help secure critical infrastructure. The agency said it is also<strong> <\/strong>beginning to notify affected people and companies.<\/p>\n<p>A CISA official said there\u2019s no evidence that the hackers stole data after exploiting a vulnerability in Ivanti products, and the breach had no operational impact even though it compelled CISA to take the systems offline.<\/p>\n<p>\u201cThat is something we looked hard for and it was one of the primary reasons that we waited this long, as we wanted to see if we could find any evidence of exfiltration,\u201d Brandon Wales, CISA\u2019s executive director, told CyberScoop. The agency is also sharing further details in the spirit of transparency, he said.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>With an internal investigation led by the agency\u2019s chief information officer and threat hunting team wrapping up, Wales said their examination of the incident revealed that the attackers deployed a webshell against the CSAT tool and that there was \u201ca loss of control in the system,\u201d further pushing the agency to make disclosures to Congress. By contrast, the compromise of the gateway was \u201cquite limited,\u201d he said, and hackers did not deploy a webshell.<\/p>\n<p>News of the CISA breach <a href=\"https:\/\/therecord.media\/cisa-takes-two-systems-offline-following-ivanti-compromise\">broke earlier this month<\/a>, but the breaches date back to January, Wales said. That\u2019s when details of an Invanti vulnerability first became public. CISA itself <a href=\"https:\/\/www.cisa.gov\/news-events\/directives\/ed-24-01-mitigate-ivanti-connect-secure-and-ivanti-policy-secure-vulnerabilities\">issued an alert<\/a> about the vulnerability that the hackers used to get into CISA\u2019s systems.<\/p>\n<p>CISA implemented the vendor-recommended fixes on Jan. 11 and ran daily checks using a tool Ivanti created that was supposed to find device compromises, Wales said. On Jan. 26, CISA discovered the CSAT application was compromised; the attackers, it turned out, had access to the device for two days, he said.<\/p>\n<p>The hackers were able to bypass the Ivanti mitigations and the Ivanti \u201cintegrity checker,\u201d Wales said.<\/p>\n<p>CSAT is used under the Chemical Facility Anti-Terrorism Standards program, which requires screening of people with access to high-risk chemicals against the Terrorist Screening Database. CSAT stores information on those individuals and related companies. However, <a href=\"https:\/\/www.washingtonpost.com\/politics\/2023\/10\/18\/lone-senator-stymies-cyber-legislation-senate\/\">the law that created that program lapsed last July<\/a>, and CISA\u2019s <a href=\"https:\/\/www.cisa.gov\/resources-tools\/programs\/chemical-facility-anti-terrorism-standards-cfats\/chemical-security-assessment-tool-csat\">CSAT website<\/a> notes that as a result it\u2019s not currently requiring facilities to submit information to CSAT.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>Wales said CISA is keeping CSAT offline while it completes technological improvements to the system, and until the chemical plant security law is reauthorized.<\/p>\n<p>CISA has already briefed the Hill on details about the incident, he said. Friday\u2019s notification to the House and Senate appropriations panels, the Senate Homeland Security and Governmental Affairs Committee, the Senate\u2019s Commerce panel, the House Homeland Security Committee, the House Oversight and Accountability Committee and the House Science, Space and Technology panel is a response to the requirements under the federal cybersecurity law.<\/p>\n<p>While the government hasn\u2019t identified who has been exploiting the Ivanti vulnerability, <a href=\"https:\/\/cyberscoop.com\/ivanti-connect-secure-china\/\">cybersecurity firms have pinned blame on China-linked hackers<\/a>.<\/p>\n<p>The breach at CISA comes with important lessons, Wales said. First, the agency had an incident response plan and took action quickly as soon as it had indications of a problem. Second, CISA used information gleaned from the compromise to alert others \u2014 illustrating the value of information sharing that CISA has been campaigning for among industry.<\/p>\n<p>\u201cThird is, I think every company and any agency that suffers a compromise is going to get to learn things about where it needs to make improvements, and we are going through that process now, and our CIO is taking lessons where we need to make improvements in our systems based upon this incident and the findings of the investigation,\u201d Wales said. \u201cThat is improving the security of every one of CISA\u2019s systems.\u201d<\/p>\n<p><\/body> <\/p>\n<footer class=\"single-article__footer\" readability=\"1.4908485856905\">\n<div class=\"author-card\" readability=\"12\">\n<div class=\"author-card__avatar\">\n<figure class=\"author-card__image-wrap\"> <img data-recalc-dims=\"1\" decoding=\"async\" class=\"author-card__image\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-1.jpg?w=640&ssl=1\" alt=\"Tim Starks\"> <\/figure>\n<\/p><\/div>\n<p><h4 class=\"author-card__name\">Written by Tim Starks<\/h4>\n<p> Tim Starks is senior reporter at CyberScoop. His previous stops include working at The Washington Post, POLITICO and Congressional Quarterly. An Evansville, Ind. native, he’s covered cybersecurity since 2003. <\/p>\n<\/p><\/div>\n<div class=\"single-article__tags-container\">\n<h4 class=\"single-article__tags-title\">In This Story<\/h4>\n<\/p><\/div>\n<\/footer>\n<p> <\/html><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<div class=\"single-article__ads js-single-article-sidebar\">\n<div class=\"ad ad--sidebar js-single-article-sidebar-5 ad--rightrail_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-4 ad--rightrail_2 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-3 ad--rightrail_3 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div><\/div>\n<\/article>\n<div class=\"popular-stories popular-stories--single-post\">\n<div class=\"popular-stories__container\">\n<h2 class=\"popular-stories__title\"> More Scoops <\/h2>\n<div class=\"popular-stories__stories\">\n<div class=\"popular-stories__cards\">\n<article class=\"post-item post-item--popular-stories-cards \" readability=\"21.406047516199\">\n<figure class=\"post-item__thumbnail\"> <a class=\"post-item__thumbnail-link\" href=\"https:\/\/cyberscoop.com\/incident-reporting-easterly-homeland-security-committee\/\" tabindex=\"-1\"> <img data-recalc-dims=\"1\" loading=\"lazy\" width=\"485\" height=\"337\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-2.jpg?resize=485%2C337&ssl=1\" class=\"attachment-ratio-16-9-md size-ratio-16-9-md wp-post-image\" alt decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals.webp 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals.webp?resize=300,209 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals.webp?resize=768,534 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals.webp?resize=600,417 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals.webp?resize=242,168 242w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals.webp?resize=485,337 485w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals.webp?resize=971,675 971w\" sizes=\"auto, (max-width: 485px) 100vw, 485px\"> <\/a><figcaption class=\"screen-reader-text\"> Sen. Gary Peters, D-Mich., right, speaks with Sen. Rob Portman, R-Ohio, during a Senate Homeland Security and Governmental Affairs Committee hearing on June 8, 2021 in Washington, D.C. (Photo by Andrew Caballero-Reynolds-Pool \/ Getty Images) <\/figcaption><\/figure>\n<header class=\"post-item__meta\" readability=\"1.7918552036199\">\n<h3 class=\"post-item__title\"> <a class=\"post-item__title-link\" href=\"https:\/\/cyberscoop.com\/incident-reporting-easterly-homeland-security-committee\/\"> Biden administration officials push Congress to shape breach reporting mandates <\/a> <\/h3>\n<p> It’s part of an ongoing dance in the legislative and executive branches between demanding and requesting private sector action. <\/p>\n<div class=\"post-item__byline\"> <span class=\"post-item__author\"> <span>By <\/span> <a class=\"post-item__author-link\" href=\"https:\/\/cyberscoop.com\/author\/tim-starkscyberscoop-com\/\"> Tim Starks <\/a> <\/span> <\/div>\n<p> <\/header>\n<p> <\/article>\n<article class=\"post-item post-item--popular-stories-cards \">\n<figure class=\"post-item__thumbnail\"> <a class=\"post-item__thumbnail-link\" href=\"https:\/\/cyberscoop.com\/cisa-congress-budget-dhs-authority\/\" tabindex=\"-1\"> <img data-recalc-dims=\"1\" loading=\"lazy\" width=\"253\" height=\"168\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-3.jpg?resize=253%2C168&ssl=1\" class=\"attachment-ratio-16-9-sm size-ratio-16-9-sm wp-post-image\" alt decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-6.jpg 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-6.jpg?resize=300,199 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-6.jpg?resize=768,510 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-6.jpg?resize=600,398 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-6.jpg?resize=253,168 253w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-6.jpg?resize=507,337 507w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-6.jpg?resize=1016,675 1016w\" sizes=\"auto, (max-width: 253px) 100vw, 253px\"> <\/a><figcaption class=\"screen-reader-text\"> Jen Easterly (L), Director of the Homeland Security Cybersecurity and Infrastructure Security Agency, and Chris Inglis, National Cyber Director, testify during their confirmation hearing before the Senate Homeland Security and Governmental Affairs Committee on June 10, 2021 in Washington, DC. (Photo by Kevin Dietsch\/Getty Images) <\/figcaption><\/figure>\n<header class=\"post-item__meta\">\n<h3 class=\"post-item__title\"> <a class=\"post-item__title-link\" href=\"https:\/\/cyberscoop.com\/cisa-congress-budget-dhs-authority\/\"> Key lawmakers to CISA: Let us send you more money, power <\/a> <\/h3>\n<div class=\"post-item__byline\"> <span class=\"post-item__author\"> <span>By <\/span> <a class=\"post-item__author-link\" href=\"https:\/\/cyberscoop.com\/author\/tim-starkscyberscoop-com\/\"> Tim Starks <\/a> <\/span> <\/div>\n<p> <\/header>\n<p> <\/article>\n<article class=\"post-item post-item--popular-stories-cards \">\n<figure class=\"post-item__thumbnail\"> <a class=\"post-item__thumbnail-link\" href=\"https:\/\/cyberscoop.com\/data-breach-notification-house-homeland-hearing-legislation\/\" tabindex=\"-1\"> <img data-recalc-dims=\"1\" loading=\"lazy\" width=\"252\" height=\"168\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-4.jpg?resize=252%2C168&ssl=1\" class=\"attachment-ratio-16-9-sm size-ratio-16-9-sm wp-post-image\" alt decoding=\"async\" loading=\"lazy\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-7.jpg 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-7.jpg?resize=300,200 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-7.jpg?resize=768,512 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-7.jpg?resize=600,400 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-7.jpg?resize=252,168 252w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-7.jpg?resize=505,337 505w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/03\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals-7.jpg?resize=1012,675 1012w\" sizes=\"auto, (max-width: 252px) 100vw, 252px\"> <\/a><figcaption class=\"screen-reader-text\"> Rep. Yvette D. Clarke speaks at Go Bigger on Climate, Care, and Justice! on July 20, 2021 in Washington, DC. (Photo by Shannon Finney\/Getty Images for Green New Deal Network) <\/figcaption><\/figure>\n<header class=\"post-item__meta\">\n<h3 class=\"post-item__title\"> <a class=\"post-item__title-link\" href=\"https:\/\/cyberscoop.com\/data-breach-notification-house-homeland-hearing-legislation\/\"> Breach notification window, accountability are focus of coming fight on cyber legislation in Congress <\/a> <\/h3>\n<div class=\"post-item__byline\"> <span class=\"post-item__author\"> <span>By <\/span> <a class=\"post-item__author-link\" href=\"https:\/\/cyberscoop.com\/author\/tim-starkscyberscoop-com\/\"> Tim Starks <\/a> <\/span> <\/div>\n<p> <\/header>\n<p> <\/article>\n<\/p><\/div>\n<\/p><\/div>\n<p> <\/div>\n<p>\n<\/div>\n<p> <\/p>\n<section class=\"latest-podcasts\">\n<h2 class=\"latest-podcasts__title\"> Latest Podcasts\t<\/h2>\n<\/section>\n<div class=\"top-categories\">\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Government<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Technology<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Geopolitics<\/h3>\n<\/p><\/div>\n<\/p><\/div>\n<p> <\/main> <\/p>\n<div class=\"ad ad--bottom \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div id=\"interstitial\" class=\"welcome__container\"> <button id=\"close-modal-1\" class=\"welcome__clickable_area\"><\/button> <\/p>\n<div class=\"welcome__ad_wrapper\">\n<p> <button id=\"close-modal-3\" class=\"welcome__continue-button\">Continue to CyberScoop<\/button> <\/p>\n<\/p><\/div>\n<\/p><\/div>\n<p>   <\/body> <a href=\"https:\/\/cyberscoop.com\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Ivanti-linked breach of CISA potentially affected more than 100,000 individuals<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1780,655,413,78,452,1781,117,1782,1093,1783,1784,1785,1786,1380,310],"tags":[1787,657,415,86,454,1788,119,1789,1095,1790,1791,1792,1793,1383,311],"class_list":["post-2817","post","type-post","status-publish","format-standard","hentry","category-brandon-wales","category-congress","category-critical-infrastructure","category-cybersecurity","category-cybersecurity-and-infrastructure-security-agency-cisa","category-fisma","category-government","category-house-appropriations-committee","category-house-homeland-security-committee","category-house-oversight-committee","category-house-science-and-technology-committee","category-senate-appropriations-committee","category-senate-commerce-committee","category-senate-homeland-security-and-governmental-affairs-committee","category-technology","tag-brandon-wales","tag-congress","tag-critical-infrastructure","tag-cybersecurity","tag-cybersecurity-and-infrastructure-security-agency-cisa","tag-fisma","tag-government","tag-house-appropriations-committee","tag-house-homeland-security-committee","tag-house-oversight-committee","tag-house-science-and-technology-committee","tag-senate-appropriations-committee","tag-senate-commerce-committee","tag-senate-homeland-security-and-governmental-affairs-committee","tag-technology"],"featured_image_urls":{"full":"","thumbnail":"","medium":"","medium_large":"","large":"","1536x1536":"","2048x2048":"","chromenews-featured":"","chromenews-large":"","chromenews-medium":""},"author_info":{"display_name":"Cyber Scoop","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/cyberscoop\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/brandon-wales\/\" rel=\"category tag\">Brandon Wales<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/congress\/\" rel=\"category tag\">Congress<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/critical-infrastructure\/\" rel=\"category tag\">critical infrastructure<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/cybersecurity\/\" rel=\"category tag\">Cybersecurity<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/cybersecurity-and-infrastructure-security-agency-cisa\/\" rel=\"category tag\">Cybersecurity and Infrastructure Security Agency (CISA)<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/fisma\/\" rel=\"category tag\">FISMA<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/government\/\" rel=\"category tag\">Government<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/house-appropriations-committee\/\" rel=\"category tag\">House Appropriations Committee<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/house-homeland-security-committee\/\" rel=\"category tag\">House Homeland Security Committee<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/house-oversight-committee\/\" rel=\"category tag\">House Oversight Committee<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/house-science-and-technology-committee\/\" rel=\"category tag\">House Science and Technology Committee<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/senate-appropriations-committee\/\" rel=\"category tag\">Senate Appropriations Committee<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/senate-commerce-committee\/\" rel=\"category tag\">Senate Commerce Committee<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/senate-homeland-security-and-governmental-affairs-committee\/\" rel=\"category tag\">Senate Homeland Security and Governmental Affairs Committee<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/technology\/\" rel=\"category tag\">Technology<\/a>","tag_info":"Technology","comment_count":"0","jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/2817","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=2817"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/2817\/revisions"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=2817"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=2817"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=2817"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}

{"id":2817,"date":"2024-03-29T15:05:16","date_gmt":"2024-03-29T20:05:16","guid":{"rendered":"https:\/\/cyberscoop.com\/?p=79945"},"modified":"2024-03-29T15:05:16","modified_gmt":"2024-03-29T20:05:16","slug":"ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2024\/03\/29\/ivanti-linked-breach-of-cisa-potentially-affected-more-than-100000-individuals\/","title":{"rendered":"Ivanti-linked breach of CISA potentially affected more than 100,000 individuals"},"content":{"rendered":"