Citrix Bleed Vulnerability Exploited by LockBit Ransomware Affiliates

November 21, 2023 at 12:00 PM

•

1 min read

TL;DR Summary

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a joint advisory with the FBI, MS-ISAC, and ASD's ACSC, warning about the LockBit 3.0 ransomware exploiting the Citrix Bleed vulnerability (CVE-2023-4966) in Citrix NetScaler ADC and Gateway appliances. LockBit 3.0 affiliates have been observed using this vulnerability to bypass password requirements and multifactor authentication, allowing them to hijack legitimate user sessions and gain elevated permissions to harvest credentials and access data. Network administrators are urged to apply necessary software updates and implement mitigations to protect against this ransomware threat.

Topics:business #citrixbleed #cve-2023-4966 #cybersecurity #lockbit30 #ransomware #stopransomware

Share this article

#StopRansomware: LockBit 3.0 Ransomware Affiliates Exploit CVE 2023-4966 Citrix Bleed Vulnerability CISA
Citrix warns admins to kill NetScaler user sessions to block hackers BleepingComputer
'Citrix Bleed' vulnerability targeted by nation-state and criminal hackers: CISA The Record from Recorded Future News
MAR-10478915-1.v1 Citrix Bleed CISA
LockBit Affiliates Exploiting Citrix Bleed, Government Agencies Warn Infosecurity Magazine
View Full Coverage on Google News

Reading Insights

Total Reads

Unique Readers

Time Saved

25 min

vs 26 min read

Condensed

98%

5,024 → 89 words

Want the full story? Read the original article

Read on CISA

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights