CISA tells federal agencies to replace at-risk end-of-life edge devices

• CISA has issued a binding operational directive requiring the removal of unsupported edge devices
• They pose "disproportionate and unacceptable risks" that can be easily remediated
• Every organization should focus on renewing hardware, not just the government

The US government's Cybersecurity and Infrastructure Security Agency (CISA) has issued a new warning to federal agencies to remove edge devices which have reached or passed end of support (EOS) over security fears.

US Government agencies have been given the next year to remove affected devices and replace them with equipment that's still covered by vendor security updates.

The push comes against a backdrop of rising cyberattacks, with threat actors honing in on vulnerable devices that no longer receive security patches.