vulnerability

Citrix Bleed Vulnerability (CVE-2023-4966) Exploited by LockBit Ransomware Affiliates

by
Citrix Bleed Vulnerability (CVE-2023-4966) Exploited by LockBit Ransomware Affiliates

Cybersecurity agencies have issued a warning about a critical vulnerability in Citrix application delivery controllers and gateways known as CVE-2023-4966 or “Citrix Bleed.” This vulnerability allows attackers to bypass authentication and gain deep access to networks, making it easy for them to deploy ransomware and extract sensitive data. Affected versions of Citrix software include NetScaler … Read more

Mitigating the Citrix Bleed Vulnerability Using Darktrace’s ActiveAI Security Platform | Darktrace Blog

by
Mitigating the Citrix Bleed Vulnerability Using Darktrace’s ActiveAI Security Platform | Darktrace Blog

In late 2023, Darktrace investigated the exploitation of the Citrix Bleed vulnerability on a customer’s network, utilizing their Self-Learning AI to track post-compromise activity and identify affected devices. Citrix Bleed, also known as CVE-2023-4966, has been actively exploited by cyber threat actors since August 2023, allowing them to bypass authentication requirements and potentially exfiltrate data. … Read more

Citrix Workspace App Vulnerability Allows Attackers to Escalate Privileges from Local User to Root User

by
Citrix Workspace App Vulnerability Allows Attackers to Escalate Privileges from Local User to Root User

A critical security vulnerability has been discovered in Citrix Workspace app for Mac, posing a serious risk to users and organizations relying on the software. Tracked as CVE-2024-5027, the flaw allows an attacker to escalate their privileges from a local authenticated user to a root user, potentially leading to system compromise and data loss. The … Read more

Microsoft Affirms Azure Cloud Attack Scenario is Not a Vulnerability

by
Microsoft Affirms Azure Cloud Attack Scenario is Not a Vulnerability

In a recent report, security company Tenable claimed to have discovered a high-severity vulnerability in Microsoft Azure that could potentially allow for a cross-tenant attack. The vulnerability involves bypassing Azure service tag-based firewall rules, which are used for enabling firewall whitelisting for Azure services. Attackers could exploit this flaw by sending customizable HTTP requests through … Read more

Review of the Week: Google Resolves Another Chrome Zero-Day Vulnerability, YouTube Identified as a Platform for Cybercrime – Help Net Security

by
Review of the Week: Google Resolves Another Chrome Zero-Day Vulnerability, YouTube Identified as a Platform for Cybercrime – Help Net Security

In the past week, there have been several notable developments in the cybersecurity world. Google has once again patched a zero-day exploit in Chrome, marking the eighth emergency update for the browser this year. YouTube has been identified as a key platform for cybercrime, with social engineering threats expected to dominate cyber threats in 2024. … Read more

Critical Vulnerability found in Cisco Firepower Management Center

by
Critical Vulnerability found in Cisco Firepower Management Center

A critical vulnerability has been identified in the Cisco Firepower Management Center (FMC) software, which could potentially allow attackers to conduct SQL injection attacks. The vulnerability, designated as CVE-2024-20360 with a CVSS score of 8.8, exists in the web-based management interface of the FMC software. Exploiting this flaw could enable an attacker to access database … Read more

HHS-HC3 Urges Hospitals to Act Quickly to Safeguard Against ‘Citrix Bleed’ Vulnerability and Ransomware Threat | AHA News

by
HHS-HC3 Urges Hospitals to Act Quickly to Safeguard Against ‘Citrix Bleed’ Vulnerability and Ransomware Threat | AHA News

The Health Sector Cybersecurity Coordination Center of the Department of Health and Human Services is warning hospitals and other critical infrastructure about a serious ransomware threat known as the “Citrix Bleed” vulnerability. This vulnerability is being exploited by ransomware gangs like LockBit 3.0 to bypass password requirements and multi-factor authentication measures. It is crucial for … Read more

Hackers Exploited Vulnerability in Citrix to Compromise UnitedHealth

by
Hackers Exploited Vulnerability in Citrix to Compromise UnitedHealth

Hackers breached UnitedHealth’s technology unit on February 12 by exploiting vulnerabilities in Citrix software, leading to disruptions in American healthcare. The cybercriminal gang AlphV demanded a ransom to unlock Change Healthcare’s systems after locking them on February 21. UnitedHealth CEO Andrew Witty is set to testify before the House Energy and Commerce Committee on May … Read more

CEO confirms UnitedHealth hackers exploited Citrix vulnerability for breach

by
CEO confirms UnitedHealth hackers exploited Citrix vulnerability for breach

UnitedHealth’s technology unit was recently breached by hackers on February 12th. The breach occurred due to a security vulnerability in Citrix’s software, which is used by employees to access their desktop computers remotely. This breach has raised concerns about the security of private IT companies and their ability to protect sensitive information. The largest health … Read more

UnitedHealth CEO alleges hackers exploited Citrix vulnerability to breach system – CIO News

by
UnitedHealth CEO alleges hackers exploited Citrix vulnerability to breach system – CIO News

In a recent cybersecurity breach, hackers exploited a software vulnerability in Citrix, a commercial IT vendor, to gain access to UnitedHealth’s IT systems. This breach allowed employees to remotely view their desktop computers. UnitedHealth, the largest health insurer in America, will be testifying before a House panel following this incident. The CEO of UnitedHealth, Andrew … Read more