CISA Rewrites Federal Patching Requirements for AI Threat Era

Summary

CISA has issued a new directive to federal agencies, significantly altering patching requirements. The updated policy mandates that critical vulnerabilities, particularly those posing risks in the context of AI threats, must be patched within three days. Less severe vulnerabilities can be deferred, allowing agencies to prioritize remediation efforts more effectively.

Entities