Collaborate Disseminate
Citrix has announced that it has teamed up with security researchers at FireEye to produce a free forensic tool which can help your business hints for potential Indicators of Compromise related to the CVE-2019-19781 vulnerability.
Continue reading A free tool for detecting Shitrix-related compromises on your business network
More than half of security experts think that the good outweighs the bad when it comes to proof-of-concept exploits, according to a recent Threatpost poll. Continue reading PoC Exploits Do More Good Than Harm: Threatpost Poll
Citrix has issued the first of several updates fixing a critical vulnerability in various versions of its Citrix Application Delivery Controller (ADC) and Citrix Gateway products. Continue reading Citrix Accelerates Patch Rollout For Critical RCE Flaw
As attackers continue to hit vulnerable Citrix (formerly Netscaler) ADC and Gateway installations, Citrix has released permanent fixes for some versions and has promised to provide them for other versions and for two older versions of SD-WAN WANOP by J… Continue reading First patches for the Citrix ADC, Gateway RCE flaw released
With hackers actively exploiting a critical vulnerability in its products, corporate virtual private network provider Citrix on Sunday issued the first of several patches for that flaw, and accelerated the timeline for releasing other fixes. In a statement, Citrix chief information security officer Fermin J. Serna urged customers to apply the latest patches, and said that the company had increased staffing should customers need help installing the new software. Experts say that successful exploitation of this bug could allow a hacker to burrow into the many Fortune 500 company networks that rely on the software, creating an opportunity for data theft. A flaw in VPN services, in particular, could result in the exposure of sensitive corporate information that victims incorrectly believe is protected behind an additional layer of security. The Department of Homeland Security’s cybersecurity division on Monday advised Citrix customers to “upgrade their vulnerable appliances as soon as possible.” The patches released Sunday cover certain versions of […]
The post Citrix issues first of several patches for critical bug appeared first on CyberScoop.
Continue reading Citrix issues first of several patches for critical bug
Citrix has issued its first set of patches fixing a nasty vulnerability that’s been hanging over some of its biggest products. Continue reading Citrix ships patches as vulnerable servers come under attack
Over the weekend Citrix announced that its plans to release patches for critical vulnerabilities in its technology, used by tens of thousands of businesses worldwide, have significantly sped up.
Continue reading Good news. Citrix delivers first patches to mop up Shitrix flaw that is being actively exploited
The hackers cleaning up Shitrix-vulnerable Citrix equipment are no modern day Robin Hoods.
They’re inoculating vulnerable devices from further Shitrix attacks, but at the same time opening a secret backdoor to allow future cybercriminal campaigns.
Continue reading Hackers are closing the Shitrix security hole to keep everyone out apart from themselves
Are publicly released proof-of-concept exploits more helpful for system defenders — or bad actors? Continue reading Threatpost Poll: Are Published PoC Exploits a Good or Bad Idea?
Over the course of a week, the security implications have grown more dire for a critical vulnerability in two popular products made by Citrix, a corporate virtual private network service provider used at many Fortune 500 companies. The flaw exists in a Citrix cloud-based application delivery tool, as well as in a product that allows remote access to the company’s applications. Experts say that successful exploitation of the bug could allow a hacker to burrow into the many enterprise networks that use the software. The result could be the exposure or theft of corporate information from Citrix clients who otherwise trust technology provided by the $2.5 billion company. First, experts said that attackers would soon begin exploiting the flaw. Citrix then issued an advisory assuring that its recommended stop-gap security measures would help address the issue. But as researchers warned that hackers had begun exploiting the vulnerability, Citrix updated its advisory to say that, in certain […]
The post Hackers are racing to exploit a Citrix bug that the company hasn’t patched yet appeared first on CyberScoop.
Continue reading Hackers are racing to exploit a Citrix bug that the company hasn’t patched yet