-
Netscaler ADC bug exploited to breach US critical infrastructure org
The US government is warning that threat actors breached the network of a U.S. organization in the critical infrastructure sector after exploiting a zero-day RCE vulnerability currently identified as CVE-2023-3519, a critical-severity issue in NetScaler ADC and Gateway that Citrix patched this week.
- July 21, 2023
- 08:51 AM
0
-
New critical Citrix ADC and Gateway flaw exploited as zero-day
Citrix today is alerting customers of a critical-severity vulnerability (CVE-2023-3519) in NetScaler ADC and NetScaler Gateway that already has exploits in the wild, and "strongly urges" to install updated versions without delay.
- July 18, 2023
- 02:00 PM
1
-
New Webinar: Choose Your Own Investigation — Browser Attack Edition
Modern attacks have shifted focus to the browser, yet detection tools remain largely blind to the crucial activity happening there.
Join Push Security on February 11th for an interactive "choose-your-own-adventure" webinar on ClickFix, credential phishing, and other in-browser attacks we've observed in the wild.
-
Citrix fixes severe flaws in Workspace, Virtual Apps and Desktops
Citrix Systems has released security updates for vulnerabilities in its Virtual Apps and Desktops, and Workspace Apps products.
- February 15, 2023
- 01:38 PM
- 1
-
Thousands of Citrix servers vulnerable to patched critical flaws
Thousands of Citrix ADC and Gateway deployments remain vulnerable to two critical-severity security issues that the vendor fixed in recent months.
- December 28, 2022
- 12:28 PM
- 0
-
Hackers exploit critical Citrix ADC and Gateway zero day, patch now
Citrix strongly urges admins to apply security updates for an 'Critical' zero-day vulnerability (CVE-2022-27518) in Citrix ADC and Gateway that is actively exploited by state-sponsored hackers to gain access to corporate networks.
- December 13, 2022
- 10:07 AM
- 0
-
Citrix urges admins to patch critical ADC, Gateway auth bypass
Citrix is urging customers to install security updates for a critical authentication bypass vulnerability in Citrix ADC and Citrix Gateway.
- November 08, 2022
- 12:03 PM
- 0
-
Citrix warns critical bug can let attackers reset admin passwords
Citrix warned customers to deploy security updates that address a critical Citrix Application Delivery Management (ADM) vulnerability that can let attackers reset admin passwords.
- June 15, 2022
- 10:46 AM
- 0
-
US Census Bureau hacked in January 2020 using Citrix exploit
US Census Bureau servers were breached on January 11, 2020, by hackers who exploited a Citrix ADC zero-day vulnerability as the US Office of Inspector General (OIG) disclosed in a recent report.
- August 18, 2021
- 05:07 PM
- 0
-
Citrix adds NetScaler ADC setting to block recent DDoS attacks
Citrix has released a feature enhancement designed to block attackers from using the Datagram Transport Layer Security (DTLS) feature of NetScaler ADC devices as an amplification vector in DDoS attacks.
- January 04, 2021
- 11:36 AM
- 0
-
Citrix confirms ongoing DDoS attack impacting NetScaler ADCs
Citrix has confirmed today that an ongoing 'DDoS attack pattern' using DTLS as an amplification vector is affecting Citrix Application Delivery Controller (ADC) networking appliances with EDT enabled.
- December 24, 2020
- 06:26 AM
- 0
-
Windows Defender deletes Citrix components mislabeled as malware
Citrix released an advisory on Thursday about troublesome Windows Defender definition updates that break Delivery Controllers and Cloud Connectors running Microsoft's antivirus.
- August 14, 2020
- 04:57 AM
- 5
-
Citrix fixes critical bugs allowing takeover of XenMobile Servers
Citrix today fixed 5 vulnerabilities impacting multiple versions of Citrix Endpoint Management (CEM) on-premise instances, also known as XenMobile Server.
- August 11, 2020
- 08:00 AM
- 0
-
Citrix: No breach, hacker stole business info from third party
Citrix has published an official statement to deny claims that the company's network was breached by a malicious actor who says that he was also able to steal customer information.
- July 15, 2020
- 04:29 PM
- 0
-
eToro accounts peddled by the thousands on cybercrime forums
A threat actor is peddling 62,000 active eToro accounts on a known cybercrime forum. They are also likely collaborating with REvil ransomware on the corporate intrusion front.
- July 10, 2020
- 01:02 PM
- 0
-
Citrix fixes 11 flaws in ADC, Gateway, and SD-WAN WANOP appliances
Citrix today patched a set of 11 vulnerabilities found to affect its Citrix ADC, Citrix Gateway, and Citrix SD-WAN WANOP (appliance models 4000-WO, 4100-WO, 5000-WO, and 5100-WO) networking products.
- July 07, 2020
- 08:21 AM
- 0
-
Critical Citrix ShareFile bugs could give access to private files
Citrix has fixed three vulnerabilities in multiple versions of ShareFile storage zone controllers that could be exploited without authentication for access to private data areas.
- May 06, 2020
- 12:34 PM
- 1
-
Chinese Hackers Use Cisco, Citrix, Zoho Exploits In Targeted Attacks
The Chinese state-sponsored group APT41 has been at the helm of a range of attacks that used recent exploits to target security flaws in Citrix, Cisco, and Zoho appliances and devices of entities from a multitude of industry sectors spanning the globe.
- March 25, 2020
- 06:55 PM
- 1
-
Patching the Citrix ADC Bug Doesn't Mean You Weren't Hacked
Citrix on Friday released the final patch for the critical vulnerability tracked as CVE-2019-19781 in its affected appliances. Many organizations are still at risk, though, as they continue to run Citrix servers without a fix or the advised
- January 26, 2020
- 10:31 AM
- 0
-
Citrix Releases Final Patch as Ransomware Attacks Ramp Up
Citrix released the final permanent fix for the actively exploited CVE-2019-19781 vulnerability, needed to secure all vulnerable Citrix Application Delivery Controller (ADC), Citrix Gateway, and Citrix SD-WAN WANOP appliances.
- January 24, 2020
- 03:07 PM
- 0
-
City of Potsdam Servers Offline Following Cyberattack
The City of Potsdam severed the administration servers' Internet connection following an attack that took place earlier this week. Emergency services including the city's fire department fully operational and payments are not affected.
- January 24, 2020
- 11:59 AM
- 0
.jpg)
