Tag: citrix
-
Citrix Issues Patches for Zero-Day Recording Manager Bugs
by
in SecurityNewsThere is some disagreement over whether the remote code execution (RCE) security flaws allow for unauthenticated exploitation or not. Citrix says no, but researchers say the company is downplaying a good old unauthenticated RCE. First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/citrix-patches-zero-day-recording-manager-bugs
-
Citrix ‘Recording Manager’ Zero-Day Bug Allows Unauthenticated RCE
by
in SecurityNewsThe security vulnerability is due to an exposed Microsoft Message Queuing (MSMQ) instance and the use of the insecure BinaryFormatter. First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/citrix-recording-manager-zero-day-bug-unauthenticated-rce
-
HTTP your way into Citrix’s Virtual Apps and Desktops with fresh exploit code
by
in SecurityNews‘Once again, we’ve lost a little more faith in the internet,’ researcher says First seen on theregister.com Jump to article: www.theregister.com/2024/11/12/http_citrix_vuln/
-
New Flaws in Citrix Virtual Apps Enable RCE Attacks via MSMQ Misconfiguration
by
in SecurityNewsCybersecurity researchers have disclosed new security flaws impacting Citrix Virtual Apps and Desktop that could be exploited to achieve unauthenticated remote code execution (RCE)The issue, per findings from watchTowr, is rooted in the Session Recording component that allows system administrators to capture user activity, and record keyboard and mouse input, along with a video stream…
-
New Citrix Zero-Day Vulnerability Allows Remote Code Execution
by
in SecurityNewswatchTowr has found a flaw in Citrix’s Session Recording Manager that can be exploited to enable unauthenticated RCE against Citrix Virtual Apps and Desktops First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/new-citrix-zeroday-vulnerability/
-
Citrix Boosts Security for Remote Application Accesses With More Security Layers
by
in SecurityNewsConnections on the internet are not secure by default, and bad actors frequently take advantage of users accessing organizations’ applications and res… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/citrix-boosts-security-for-remote-application-accesses-with-more-security-layers/
-
Iranian Hackers Target Microsoft 365, Citrix Systems with MFA Push Bombing
by
in SecurityNewsIranian hackers are targeting critical infrastructure organizations with brute force tactics. This article explores their techniques, including MFA…… First seen on hackread.com Jump to article: hackread.com/iranian-hackers-target-microsoft-365-mfa-push-bombing/
-
Citrix Workspace App für Windows ermöglicht Rechteausweitung
by
in SecurityNewsFirst seen on heise.de Jump to article: www.heise.de/news/Citrix-Workspace-App-fuer-Windows-ermoeglicht-Rechteausweitung-9864320.html
-
Citrix Workspace App Vulnerable to Privilege Escalation Attacks
by
in SecurityNewsCitrix released a security bulletin (CTX691485) detailing two critical vulnerabilities in the Citrix Workspace app for Windows. These vulnerabilities,… First seen on gbhackers.com Jump to article: gbhackers.com/citrix-workspace-app-vulnerable/
-
New ManticoraLoader Malware Attacking Citrix Users To Steal Data
by
in SecurityNewsCyble Research & Intelligence Labs has recently found information about a new type of malware-as-a-service (MaaS) called ‘ManticoraLoader’ in some… First seen on gbhackers.com Jump to article: gbhackers.com/manticoraloader-malware-attacking-citrix-users/
-
Channel Brief: Arrow, Citrix Sign Distribution Agreement for Smaller Partners, Sumo Logic Teams With AWS on Cybersecurity
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/news/channel-brief-thursday-2
-
Citrix bringt Updates für NetScaler Console und Co. Updates schließen zahlreiche kritische Sicherheitslücken
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/citrix-sicherheitsluecken-updates-a-2e6dc64d21b230224a8ef5123440235e/
-
Citrix Warns of Critical NetScaler Console Flaw
by
in SecurityNewsFirst seen on duo.com Jump to article: duo.com/decipher/citrix-warns-of-critical-netscaler-console-flaw
-
Citrix stopft teils kritische Sicherheitslücken in mehreren Produkten
by
in SecurityNews
Tags: citrixFirst seen on heise.de Jump to article: www.heise.de/news/Citrix-stopft-teils-kritische-Sicherheitsluecken-in-mehreren-Produkten-9795655.html
-
Channel Brief: Cytactic Launches Cyberattack Readiness Platform, Parallels Offers Promo for Citrix Migration
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/news/channel-brief-cytactic-launches-cyberattack-readiness-platform
-
Citrix fixed critical and high-severity bugs in NetScaler product
by
in SecurityNewsIT giant Citrix addressed multiple vulnerabilities, including critical and high-severity issues in its NetScaler product. Citrix released security upd… First seen on securityaffairs.com Jump to article: securityaffairs.com/165553/security/citrix-fixed-netscaler-flaw.html
-
Citrix Patches Critical NetScaler Console Vulnerability
by
in SecurityNewsCitrix rolls out patches for multiple security vulnerabilities, including critical and high-severity issues in the NetScaler product line. The post Ci… First seen on securityweek.com Jump to article: www.securityweek.com/citrix-patches-critical-netscaler-console-vulnerability/
-
Change Healthcare breached via Citrix portal with no MFA
by
in SecurityNewsUnitedHealth Group CEO Andrew Witty’s opening statement for Wednesday’s congressional hearing shed more light on the ransomware attack against Change … First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366582824/Change-Healthcare-breached-via-Citrix-portal-with-no-MFA
-
Vulnerability Recap 5/13/24 F5, Citrix Chrome
by
in SecurityNewsFirst seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/vulnerability-recap-may-13-2024/
-
Admins müssen selbst handeln: PuTTY-Sicherheitslücke bedroht Citrix Hypervisor
by
in SecurityNewsFirst seen on heise.de Jump to article: www.heise.de/news/Admins-muessen-selbst-handeln-PuTTY-Sicherheitsluecke-bedroht-Citrix-Hypervisor-9713898.html
-
Citrix Addresses High-Severity Flaw in NetScaler ADC and Gateway
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/citrix-addresses-high-severity-flaw-in-netscaler-adc-and-gateway
-
Citrix warns customers to update PuTTY version installed on their XenCenter system manually
by
in SecurityNewsCitrix urges customers to manually address a PuTTY SSH client flaw that could allow attackers to steal a XenCenter admin’s private SSH key. Versions o… First seen on securityaffairs.com Jump to article: securityaffairs.com/162953/security/citrix-manually-update-putty-ssh-client.html
-
Citrix warns admins to manually mitigate PuTTY SSH client bug
by
in SecurityNewsCitrix notified customers this week to manually mitigate a PuTTY SSH client vulnerability that could allow attackers to steal a XenCenter admin’s priv… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/citrix-warns-admins-to-manually-mitigate-putty-ssh-client-bug/
-
UnitedHealth Congressional Testimony Reveals Rampant Security Fails
by
in SecurityNewsThe breach was carried out with stolen Citrix credentials for an account that lacked multifactor authentication. Attackers went undetected for days, a… First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/unitedhealth-congressional-testimony-rampant-security-fails
-
Citrix NetScaler ADC Gateway Flaw Lets Attackers Obtain Sensitive Data Remotely
by
in SecurityNewsA security vulnerability has been identified in Citrix NetScaler ADC and Gateway appliances, allowing remote attackers to access sensitive data withou… First seen on gbhackers.com Jump to article: gbhackers.com/citrix-netscaler-adc-gateway-flaw/
-
Change Healthcare incident caused by compromised Citrix credentials
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/news/change-healthcare-incident-caused-by-compromised-citrix-credentials
-
Change Healthcare hacked using stolen Citrix account with no MFA
by
in SecurityNewsUnitedHealth confirms that Change Healthcare’s network was breached by the BlackCat ransomware gang, who used stolen credentials to log into the compa… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/change-healthcare-hacked-using-stolen-citrix-account-with-no-mfa/
-
UnitedHealth CEO: Paying Ransom Was ‘Hardest Decision’ Ever
by
in SecurityNewsCEO Tells Congress Attackers Gained Access Via a Citrix Portal; What Happened Next. Deciding to pay cybercriminals a ransom in the attack on Change He… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/unitedhealth-ceo-paying-ransom-was-hardest-decision-ever-a-24977
-
Sicherheitslücken in Citrix Xenserver und Hypervisor – Angreifer können Citrix-Lösungen übernehmen Updates verfügbar
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/citrix-xenserver-hypervisor-schwachstellen-updates-a-ae5e5e8e336a72ea59cc77ea75878066/
-
Citrix UberAgent Flaw Let Attackers Elevate Privileges
by
in SecurityNewsA significant vulnerability has been identified in Citrix’s monitoring tool, uberAgent. If exploited, this flaw could allow attackers to escalate thei… First seen on gbhackers.com Jump to article: gbhackers.com/citrix-uberagent-flaw/