US and UK Agencies Warn Organizations to Replace Discontinued Edge Devices to Mitigate Security Risks
US and UK government agencies have issued a warning to organizations about the risks associated with discontinued edge devices, urging them to replace these devices promptly. Edge devices, which include firewalls, IoT devices, and network security appliances, are critical for routing network traffic. However, once these devices reach end-of-support (EOS) status, they no longer receive security updates, making them vulnerable to exploitation by state-sponsored threat actors. The Cybersecurity and Infrastructure Security Agency (CISA), along with the FBI and the UK's National Cyber Security Centre (NCSC), highlighted the potential for these devices to be used as entry points for unauthorized access, data theft, and network persistence. CISA has issued Binding Operational Directive 26-02, requiring federal agencies to update or decommission EOS devices to mitigate these risks. 
