CISA Orders Agencies to Patch and Replace End-of-Life Devices, Citing Active Exploitation
The Cybersecurity and Infrastructure Security Agency (CISA) issued a binding operational directive requiring federal agencies to inventory, replace, and continuously monitor end‑of‑support (EOS) edge devices after detecting active exploitation by advanced threat actors, some linked to nation‑states. Agencies have three months to identify vulnerable hardware, twelve months to replace it, and eighteen months to fully eliminate it, with ongoing monitoring to prevent re‑introduction. The directive emphasizes upgrading vendor‑supported devices where possible and signals a coordinated effort with the Office of Management and Budget to track compliance. CISA’s move aims to close a persistent attack surface that endangers sensitive government data.
Agencies Lost Around 20,000 Tech Workers Last Year — and Now the Trump Admin Is Hiring
Over 19,500 technology, data and telecommunications employees left the federal government in 2025, resulting in a net loss of 17,228 tech positions after limited hiring. The departures spanned six agencies with the biggest cuts, including Defense, Treasury, Agriculture, Veterans Affairs,...
Domestic Surveillance Fears Loom over Congress Debate to Renew Spying Power
Congress is debating the reauthorization of Section 702 of the Foreign Intelligence Surveillance Act, which allows warrantless collection of foreign communications but often sweeps up U.S. persons. Recent Trump-era domestic surveillance orders and expanded data‑provider definitions have heightened Democratic concerns...
