Citrix - The Stack

Boeing shares ransomware incident TTPs as Citrix Bleed attacks ramp up

Hey criminals! Fire an HTTP GET request. Grab system memory including session cookies issued post-authentication. Don't worry about logs. Pillage and loot. Thanks, Citrix.

The Stack November 24, 2023

NCSC

Cybersecurity

News

1 Citrix bug alone triggered 13 “nationally significant” UK cybersecurity incidents

You filthy animals are **** at network architecture, and it may be "necessary to expand threat hunting" says NCSC.

Edward Targett November 14, 2023

Citrix Bleed: Two ransomware groups now exploiting bug for initial access

vulnerabilities

cybersecurity

News

Citrix Bleed: Two ransomware groups now exploiting bug for initial access

Here's what you need to do to reduce the threat posed by CVE-2023-4966. But don't delay.

Steve Ranger October 31, 2023

Citrix ShareFile vulnerability CVE-2023-24489 exploited

Citrix ShareFile vulnerability being exploited amid warnings of a “huge spike” in attacks

Pre-auth RCE in Citrix ShareFile has the potential to be the next MOVEit, or Accellion, or GoAnywhere, or Aspera Faspex, or...

The Stack August 16, 2023

NetScaler vulnerability, CVE-2023-3519 IOCs

vulnerabilities

CISA

News

Citrix zero day used to attack critical infrastructure -- IOCs and detections now available

Attackers dropped a webshell, collected and exfiltrated Active Directory data, then ran into some healthy obstacles...

Edward Targett July 21, 2023

Critical Citrix vulnerability CVE-2023-3519 under attack

vulnerabilities

cybersecurity

News

Critical pre-auth RCE Citrix Gateway vulnerability is under active attack and looks bad

There are approximately 38,000 Citrix Gateway appliances exposed to the public internet and a whole host of internet traffic flows through Citrix ADC...

The Stack July 18, 2023

2022's last Patch Tuesday brings Citrix, VMware, MSFT zero days

2022's last Patch Tuesday brings Citrix, VMware, MSFT zero days

Critical Citrix, VMware, Microsoft vulnerabilities all need patching

The Stack December 14, 2022

Interview: Insurance group Markerstudy's Head of Group IT Adam Miller

Some of the toughest challenges in IT can emerge around acquisitions. And insurance group Markerstudy has been acquisitive. In 2020, it bought the Co-op’s insurance underwriting business, making it the UK’s sixth largest motor insurance provider. In April 2021, it purchased Brightside Insurance. In January 2022, it acquired...

The Stack January 20, 2022

Boeing shares ransomware incident TTPs as Citrix Bleed attacks ramp up

1 Citrix bug alone triggered 13 “nationally significant” UK cybersecurity incidents

Citrix Bleed: Two ransomware groups now exploiting bug for initial access

Citrix ShareFile vulnerability being exploited amid warnings of a “huge spike” in attacks

Citrix zero day used to attack critical infrastructure -- IOCs and detections now available

Critical pre-auth RCE Citrix Gateway vulnerability is under active attack and looks bad

2022's last Patch Tuesday brings Citrix, VMware, MSFT zero days

Interview: Insurance group Markerstudy's Head of Group IT Adam Miller