Citrix’s Virtual Apps and Desktops recently faced scrutiny due to the announcement of potential vulnerabilities, raising alarms among cybersecurity experts and users alike. The discovery, made by the cybersecurity firm watchTowr,… Article Source https://evrimagaci.org/tpg/citrix-virtual-apps-exposes-major-security-flaw-57396
Citrix has revealed two critical vulnerabilities in its NetScaler products, posing risks of sensitive data exposure and denial of service attacks. The vulnerabilities identified as CVE-2024-6235 and CVE-2024-6236 have urged Citrix users to update their systems to prevent potential threats. CVE-2024-6235 involves authentication misuse, potentially divulging sensitive information, with a severity score of 9.4. Exploiting … Read more
Israeli cybersecurity firm Sygnia has uncovered a critical vulnerability in Cisco’s NX-OS software, impacting numerous Cisco Nexus devices used by organizations worldwide. The security flaw was exploited by the Chinese hacking group Velvet Ant for espionage purposes, marking it as one of the most advanced cyber attacks to date. Sygnia’s researchers identified the vulnerability while … Read more
A recent cyberattack targeting an undisclosed telecommunications provider has put approximately 1,000 enterprise customers of Cisco Duo at risk, according to a report from Cisco’s Data Privacy and Incident Response Team. The attack, which occurred on April 1, involved a phishing attack that allowed the attacker to access and steal SMS MFA message records sent … Read more
NVIDIA has reached a new record high, boosting its profitability and tempting investors to jump on board. Despite this, passive investors relying on ETFs have missed out on these gains. Other tech giants like Qualcomm, Microns, KLA Corp, and Lam Research have also hit record highs, contributing to the S&P 500 technology index’s impressive 31% … Read more
The US Cybersecurity and Infrastructure Security Agency (CISA), along with the FBI and the Australian Cyber Security Center (ACSC), have released detailed information on how the LockBit ransomware gang exploited the Citrix Bleed vulnerability to access Boeing’s systems. This vulnerability, known as CVE-2023-4966, affects Citrix NetScaler web applications and has been used by nation state … Read more
Cisco has disclosed two vulnerabilities in its Finesse web-based management interface which could allow remote attackers to conduct a stored cross-site scripting attack. The vulnerabilities, identified as CVE-2024-20404 and CVE-2024-20405, involve a remote file inclusion vulnerability and a server-side request forgery attack. These vulnerabilities have a security impact rating of Medium, as they provide limited … Read more
A recent investigation has shed light on some concerning issues surrounding Intel’s operations in Hillsboro, Oregon. Multiple documents obtained and released reveal discrepancies in the company’s reporting of pollutants emitted from their facilities. The Environmental Protection Agency (EPA) conducted an inspection at Intel’s Aloha and Ronler Acres campuses, uncovering potential violations of the Clean Air … Read more