Forum: Too Lazy BBS

CISA Releases Update to ED 26-03 to Include New Required Actions and Reporting Requirement for Federal Agencies

From CISA@cisa@messages.cisa.gov to cisa@toolazy.synchro.net on Wed Mar 11 15:07:02 2026

--===============8523213753697632610==
Content-Type: multipart/alternative; boundary="===============6470228299733269403=="
MIME-Version: 1.0

--===============6470228299733269403==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable

Cybersecurity and Infrastructure Security Agency (CISA)

You are subscribed to Cybersecurity Advisories for Cybersecurity and Infras= tructure Security Agency. This information has recently been updated and is=
now available.

CISA Releases Update to ED 26-03 to Include New Required Actions and Report= ing Requirement for Federal Agencies [ https://www.cisa.gov/news-events/di= rectives/v1-ed-26-03-mitigate-vulnerabilities-cisco-sd-wan-systems?utm_sour= ce=3DUpdateED26-03&utm_medium=3DGovDelivery ]

"03/11/2026 11:00 AM EST"

CISA has=C2=A0released=C2=A0an=C2=A0update [ https://www.cisa.gov/news-even= ts/directives/v1-ed-26-03-mitigate-vulnerabilities-cisco-sd-wan-systems?utm= _source=3DUpdateED26-03&utm_medium=3DGovDelivery ]=C2=A0to=C2=A0Emergency D= irective=C2=A0(ED)=C2=A026-03:=C2=A0Mitigate Vulnerabilities in Cisco Softw= are-Defined Wide-Area Networking (SD-WAN)=C2=A0Systems [ https://www.cisa.g= ov/news-events/directives/ed-26-03-mitigate-vulnerabilities-cisco-sd-wan-sy= stems?utm_source=3DUpdateED26-03&utm_medium=3DGovDelivery ]=C2=A0that=C2=A0= requires new=C2=A0actions and an=C2=A0additional=C2=A0reporting requirement=
for federal agencies running affected products.=C2=A0=C2=A0

Federal Civilian Executive Branch (FCEB) agencies are directed to take=C2= =A0additional=C2=A0actions=C2=A0outlined in the update [ https://www.cisa.g= ov/news-events/directives/v1-ed-26-03-mitigate-vulnerabilities-cisco-sd-wan= -systems?utm_source=3DUpdateED26-03&utm_medium=3DGovDelivery ]=C2=A0involvi=
ng Cisco SD-WAN systems=C2=A0on agency networks or hosted by third parties =
on an agency=E2=80=99s behalf.

Following completion of these actions, agencies are to=C2=A0report updates =
to CISA=C2=A0using the=C2=A0CISA provided template on the actions taken to = provide logs to CISA via=C2=A0its=C2=A0Cloud Logging Aggregation Warehouse = program.=C2=A0For=C2=A0assistance=C2=A0with this task, agencies should cont= act=C2=A0CLAWOperationsSupport@cisa.dhs.gov.=C2=A0

CISA also updated its Supplemental Direction ED 26-03: Hunt and Hardening G= uidance for Cisco SD-WAN Systems [ https://www.cisa.gov/news-events/directi= ves/supplemental-direction-ed-26-03-hunt-and-hardening-guidance-cisco-sd-wa= n-systems?utm_source=3DUpdateED26-03&utm_medium=3DGovDelivery ]=C2=A0to=C2= =A0provide prescriptive actions for FCEB agencies.=C2=A0=C2=A0

This product is provided subject to this=C2=A0Notification [ https://www.ci= sa.gov/notification ]=C2=A0and this=C2=A0Privacy & Use=C2=A0policy [ https:= //www.cisa.gov/privacy-policy ].

Please share your thoughts with us through this this anonymous survey [ htt= ps://cisasurvey.gov1.qualtrics.com/jfe/form/SV_9n4TtB8uttUPaM6?Source=3DGov= DeliveryED26-03-Alert-Guidance-V1 ]. We appreciate your feedback.

=C2=A0

body { font-size: 1em; font-family: Arial, Verdana, sans-serif; font-weight=
: normal; font-style: normal; color: #333333; }=20

Having trouble viewing this message?=C2=A0View it as a webpage [ https://co= ntent.govdelivery.com/accounts/USDHSCISA/bulletins/40db871 ].=C2=A0 [ https= ://content.govdelivery.com/accounts/USDHS/bulletins/292141e ]

You are subscribed to updates from the Cybersecurity and Infrastructure Sec= urity Agency [ https://www.cisa.gov ] (CISA)
Manage Subscriptions [ https://public.govdelivery.com/accounts/USDHSCISA/su= bscriber/edit?preferences=3Dtrue#tab1 ]=C2=A0=C2=A0|=C2=A0=C2=A0Privacy Pol= icy [ https://www.cisa.gov/privacy-policy ]=C2=A0=C2=A0|=C2=A0 Help [ https= ://subscriberhelp.granicus.com/s/article/Subscriber-Help-Center ] [ https:/= /insights.govdelivery.com/Communications/Subscriber_Help_Center ]

Connect with CISA:=20
Facebook [ https://www.facebook.com/CISA ]=C2=A0 |=C2=A0 Twitter [ https://= twitter.com/CISAgov ]=C2=A0 |=C2=A0 Instagram [ https://Instagram.com/cisag=
ov ]=C2=A0 |=C2=A0 LinkedIn [ https://www.linkedin.com/company/cybersecurit= y-and-infrastructure-security-agency ]=C2=A0 |=C2=A0=C2=A0 YouTube [ https:= //www.youtube.com/channel/UCxyq9roe-npgzrVwbpoAy0A ]

________________________________________________________________________

This email was sent to cisa@toolazy.synchro.net using GovDelivery Communica= tions Cloud, on behalf of: Cybersecurity and Infrastructure Security Agency=
=C2=B7 707 17th St, Suite 4000 =C2=B7 Denver, CO 80202 GovDelivery logo [ = https://subscriberhelp.granicus.com/ ]=20
body .abe-column-block { min-height: 5px; } table.gd_combo_table img {margi= n-left:10px; margin-right:10px;} table.gd_combo_table div.govd_image_displa=
y img, table.gd_combo_table td.gd_combo_image_cell img {margin-left:0px; ma= rgin-right:0px;}

--===============6470228299733269403==
Content-Type: text/html; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns=3D"http://www.w3.org/1999/xhtml" xml:lang=3D"en" lang=3D"en"> <head>
<title> CISA Releases Update to ED 26-03 to Include New Required Actions=
and Reporting Requirement for Federal Agencies
</title>

</head>
<body style=3D"">

<table width=3D"700" border=3D"0" cellspacing=3D"0" cellpadding=3D"0"=
align=3D"center">
<tr>
<td>


<a name=3D"gd_top" id=3D"gd_top"></a>

=20

<img src=3D"https://content.govdelivery.com/attachments/fancy_images/U= SDHSCISA/2020/06/3486054/05152023-gov-delivery-banner-copy_original.png" al= t=3D"Cybersecurity and Infrastructure Security Agency (CISA)" title=3D"" wi= dth=3D"600" height=3D"100">
You are subscribed to Cybersecurity Advisories for Cybersecurity and I= nfrastructure Security Agency. This information has recently been updated a=
nd is now available.
<h2><a href=3D"https://www.cisa.gov/news-events/directives/v1-ed-26-03-miti= gate-vulnerabilities-cisco-sd-wan-systems?utm_source=3DUpdateED26-03&utm_me= dium=3DGovDelivery" target=3D"_blank" title=3D"CISA Releases Update to ED 2= 6-03 to Include New Required Actions and Reporting Requirement for Federal = Agencies " rel=3D"noopener">CISA Releases Update to ED 26-03 to Include New=
Required Actions and Reporting Requirement for Federal Agencies </a></h2>
<div class=3D"rss_item" style=3D"margin-bottom: 2em;">
03/11/2026 11:00 AM EST
CISA has=C2=A0<s= pan style=3D"margin: 0px; padding: 0px;">released=C2=A0an=C2=A0<a href=3D"https://www.cisa.gov/news-events/di= rectives/v1-ed-26-03-mitigate-vulnerabilities-cisco-sd-wan-systems?utm_sour= ce=3DUpdateED26-03&utm_medium=3DGovDelivery" target=3D"_blank" style=3D"mar= gin: 0px; padding: 0px; color: inherit;" rel=3D"noopener">update</a><= span style=3D"margin: 0px; padding: 0px;">=C2=A0to= =C2=A0<a href=3D"https://www.cisa.gov/news-events/directives/= ed-26-03-mitigate-vulnerabilities-cisco-sd-wan-systems?utm_source=3DUpdateE= D26-03&utm_medium=3DGovDelivery" target=3D"_blank" style=3D"margin: 0px; pa= dding: 0px; color: inherit;" rel=3D"noopener">Emergency Directive=C2=A0(ED)= =C2=A026-03:=C2=A0Mitigate Vulnerabilities in Cisco Software-Defined Wide-A= rea Networking (SD-WAN)=C2=A0Systems</a>=C2=A0that= =C2=A0requires new= =C2=A0actions and an=C2=A0</span= >additional=C2=A0reporting requirement for federal agenci=
es running affected produ= cts.=C2=A0=C2=A0
<div style=3D"margin: 0px; padding: 0px; color: #000000; font-family: 'Sego=
e UI', 'Segoe UI Web', Arial, Verdana, sans-serif; font-size: 12px; font-we= ight: 400; text-align: start;">
Federal Ci= vilian Executive Branch (FCEB) agencies are directed to take=C2=A0</s= pan>additional<spa=
n style=3D"margin: 0px; padding: 0px;">=C2=A0actions<sp=
an style=3D"margin: 0px; padding: 0px;">=C2=A0outlined in the =
<a href=3D"https://www.cisa.gov/news-events/directives/v1-ed-26-03-mitigate= -vulnerabilities-cisco-sd-wan-systems?utm_source=3DUpdateED26-03&utm_medium= =3DGovDelivery" target=3D"_blank" title=3D"update" rel=3D"noopener">update<= /a>=C2= =A0invo<spa=
n style=3D"margin: 0px; padding: 0px;">lving Cisco SD-WAN systems<sp=
an style=3D"margin: 0px; padding: 0px;">=C2=A0on agency networ=
ks or hosted by third parties on an agency=E2=80=99s behalf.<=

</div>
Following completion o=
f these actions<sp=
an style=3D"margin: 0px; padding: 0px;">, agencies are to=C2=A0<span=
style=3D"margin: 0px; padding: 0px;">report updates to CISA=C2=A0<s= pan style=3D"margin: 0px; padding: 0px;">using the=C2=A0CISA provided template on the actions taken to provide logs to CISA v= ia=C2=A0its=C2=A0Cloud Logging Aggregation Warehouse program.=C2=A0For=C2=A0assistance=C2=A0with this task, agencies should contact=C2=A0</span= ><a href=3D"mailto:CLAWOperationsSupport@cisa.dhs.gov" target=3D"_blank" st= yle=3D"margin: 0px; padding: 0px; color: inherit;" rel=3D"noopener">CLAWOperationsSupport@cisa.dhs.gov</a><= span style=3D"margin: 0px; padding: 0px;">.=C2=A0=

<div style=3D"margin: 0px; padding: 0px; color: #000000; font-family: 'Sego=
e UI', 'Segoe UI Web', Arial, Verdana, sans-serif; font-size: 12px; font-we= ight: 400; text-align: start;">
CISA also = updated its <a href=3D"https://www.cisa.gov/news-events/directives/su= pplemental-direction-ed-26-03-hunt-and-hardening-guidance-cisco-sd-wan-syst= ems?utm_source=3DUpdateED26-03&utm_medium=3DGovDelivery" target=3D"_blank" = rel=3D"noopener">Supplemental Direction ED 26-03: Hunt and Hardening Guidan=
ce for Cisco SD-WAN Systems</a>=C2=A0to=C2=A0provide prescriptive actions for FCEB agencies.= =C2=A0=C2=A0
</div>
This product is provided subject to this=C2=A0<a href=3D"https://www.cis= a.gov/notification" target=3D"_blank" title=3D"Notification" rel=3D"noopene= r">Notification</a>=C2=A0and this=C2=A0<a href=3D"https://www.cisa.gov/priv= acy-policy" target=3D"_blank" title=3D"Privacy & Use=C2=A0policy" rel= =3D"noopener">Privacy & Use=C2=A0policy</a>.
Please share your thoughts with us through this this <a href=3D"https://= cisasurvey.gov1.qualtrics.com/jfe/form/SV_9n4TtB8uttUPaM6?Source=3DGovDeliv= eryED26-03-Alert-Guidance-V1" target=3D"_blank" title=3D"product feedback s= urvey" rel=3D"noopener">anonymous survey</a>. We appreciate your feedback.<=

=C2=A0
</div>
<style>body {
font-size: 1em; font-family: Arial, Verdana, sans-serif; font-weight: norma=
l; font-style: normal; color: #333333;
}
</style>
=20

<div id=3D"mail_footer">
Having trouble viewing this message?=C2=A0<a href=3D"ht= tps://content.govdelivery.com/accounts/USDHSCISA/bulletins/40db871" target= =3D"_blank" rel=3D"noopener">View it as a webpage</a>.=C2=A0<a href=3D"http= s://content.govdelivery.com/accounts/USDHS/bulletins/292141e" target=3D"_bl= ank" rel=3D"noopener"></a>
You are subscribed to updates from the <a href=3D"https://w= ww.cisa.gov">Cybersecurity and Infrastru= cture Security Agency</a> (CISA) <a href=3D"https://public.govdelivery.com/account= s/USDHSCISA/subscriber/edit?preferences=3Dtrue#tab1" target=3D"_blank" rel= =3D"noopener">Manage Sub= scriptions</a>=C2=A0=C2=A0|=C2=A0=C2=A0<a href=3D"https://www.cisa.gov/privacy-policy=
" target=3D"_blank" rel=3D"noopener">Privacy Policy</a>=C2=A0=C2=A0|=C2=A0 <a href=3D"https://subscriberhelp.granicu= s.com/s/article/Subscriber-Help-Center" target=3D"_blank" rel=3D"noopener">= Help</a><a href=3D"https://insights.govdelivery.com/Communications/Subscrib= er_Help_Center" target=3D"_blank" rel=3D"noopener"></a>
Connect with CISA: <a href=3D"https://www.facebook.com/= CISA" target=3D"_blank" rel=3D"noopener">Facebook</a>=C2=A0 |=C2=A0 <a href=3D"https://twitter.com/CISAgov" t= arget=3D"_blank" rel=3D"noopener">Twitter</a>=C2=A0 |=C2=A0 <a href=3D"https://Instagram.com/cisagov" target= =3D"_blank" rel=3D"noopener">Instagram</a>=C2=A0 |=C2=A0 <a href=3D"https://www.linkedin.com/company/cybersec= urity-and-infrastructure-security-agency" target=3D"_blank" rel=3D"noopener= ">LinkedIn</a><sp=
an style=3D"font-size: 10.0pt; color: #757575;">=C2=A0 |=C2=A0=C2=A0 </span= ><a href=3D"https://www.youtube.com/channel/UCxyq9roe-npgzrVwbpoAy0A" targe= t=3D"_self">YouTube</spa= n></a>

</div>
<div id=3D"tagline">
<hr>
<table style=3D"width: 100%;" border=3D"0" cellspacing=3D"0" cellpadding=3D=

<tbody>

<td style=3D"color: #757575; font-size: 10px; font-family: Arial;" width=3D= "89%">This email was sent to cisa@toolazy.synchro.net using GovDelivery Com= munications Cloud, on behalf of: Cybersecurity and Infrastructure Security = Agency =C2=B7 707 17th St, Suite 4000 =C2=B7 Denver, CO 80202</td>
<td align=3D"right" width=3D"11%"><a href=3D"https://subscriberhelp.granicu= s.com/" target=3D"_blank" rel=3D"noopener"><img src=3D"https://content.govd= elivery.com/images/govd-logo-dark.png" border=3D"0" alt=3D"GovDelivery logo=
" width=3D"115"></a></td>
</tr>
</tbody>
</table>
<style type=3D"text/css">body .abe-column-block { min-height: 5px; } table.= gd_combo_table img {margin-left:10px; margin-right:10px;} table.gd_combo_ta= ble div.govd_image_display img, table.gd_combo_table td.gd_combo_image_cell=
img {margin-left:0px; margin-right:0px;}</style>

</div>
</td>
</tr>
</table>

<img alt=3D"" src=3D"https://links-2.govdelivery.com/CI0/0101019cdd6fe1c8-2= 0af715c-658f-4589-abb6-3de51d95554b-000000/XYHGwaGw3_WsLBT2OIH11aHiEOVkeZH7= CBMMYUnXEv0=3D448" style=3D"display: none; width: 1px; height: 1px;">
</body>
</html>

--===============6470228299733269403==--

--===============8523213753697632610==--

Who's Online
Recent Visitors
- Sykotik
  Tue Apr 14 16:22:53 2026
  from Canada via Telnet
- Morningstarr
  Sun Apr 12 15:27:15 2026
  from Concord, Nc via Telnet
- Rixter
  Fri Apr 3 06:57:42 2026
  from Madison, Nc via SSH
- Voltman
  Wed Apr 1 11:17:50 2026
  from Calgary, Alberta via Telnet

System Info

Sysop:	Amessyroom
Location:	Fayetteville, NC
Users:	63
Nodes:	6 (0 / 6)
Uptime:	492964:53:29
Calls:	840
Files:	1,302
D/L today:	4 files (8,054K bytes)
Messages:	255,791

CISA Releases Update to ED 26-03 to Include New Required Actions and Reporting Requirement for Federal Agencies

Who's Online

Recent Visitors

System Info