Wednesday, June 19, 2024

Citrix Internal Network Hacked and Access the Most Sensitive Data for 6 Month by Unknown Hackers

Citrix finally confirms that the cybercriminals successfully compromised their internal network and accessed the most sensitive files also they removed from their network during the security breach that reported in March.

Citrix Systems, Inc.a well-known software company that provides server, application, and desktop virtualization, networking, software as a service, and cloud computing technologies for NASA, FBI, etc.

Citrix experienced a massive data breach and the company were believed that the attackers may have stolen at least 6 TB to 10 TB of data.

In March when FBI notified to Citrix regarding this incident that they believed that Iran-base organized cybercrime group called Iridium who may have stolen at least 6-10 TB of highly sensitive data that belongs to the project data of aerospace industry, the FBI, NASA, and Saudi Arabia’s state-owned oil company.

During the attack, threat actors leveraged a combination of tools, techniques, and procedures, allowing them to conduct targeted network intrusion to access The internal network.

After this incident learned by Citrix, they deployed the security experts and immediately launched an investigation.

In this case, FBI was claimed that Citrix Hacked by international cyber criminals who have gained access to the internal system and stole the sensitive business documents.

Now, Citrix Released a new statement that named as “Notice of Data Breach” to Office of the Attorney General and all the Citrix employees who were suffered by this data breach.

Based on the investigation report, Citrix confirmed that the cybercriminals had intermittent access to our network between October 13, 2018, and March 8, 2019, and that they removed files from Citrix internal systems.

Stolen data contains current and former employees and, in limited cases, information about beneficiaries and/or dependents including names, Social Security numbers, and financial information.

“In order to find out the solution and future prevention Citrix have engaged leading cyber security firms to assist our internal team with its forensic investigation, and also cooperating with the FBI in connection with their investigation of the cyber criminals”, Peter Lefkowitz, Chief Privacy and Digital Risk Officer said.

Additionally, and as a precaution, we have arranged for you, at your option, to enroll in Equifax ID Patrol, a complimentary one-year credit monitoring, dark web monitoring, and identity restoration service. You have until August 31, 2019, to activate the free, Citrix added in their statement.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity updates.

Also Read:

Most Hacked Passwords – Top 100,000 Common Passwords that Already Known to Hackers

Wipro Security Breach – Employees’ accounts Hacked Through Advanced Phishing Campaign

Docker Hub Hacked – Hackers Gained Access to 190,000 Users Accounts


Latest articles

Amtrak Data Breach: Hackers Accessed User’s Email Address

Amtrak notified its customers regarding a significant security breach involving its Amtrak Guest Rewards...

Chrome Security Update – Patch for 6 Vulnerabilities

Google has announced a new update for the Chrome browser, rolling out version 126.0.6478.114/115...

Hackers Weaponize Windows Installer (MSI) Files to Deliver Malware

Cybersecurity researchers have uncovered a sophisticated malware campaign orchestrated by a threat actor group,...

Hackers Using VPNs To Exploit Restrictions & Steal Mobile Data

Hackers are offering "free" mobile data access on Telegram channels by exploiting loopholes in...

New PhaaS Platform Lets Attackers Bypass Two-Factor Authentication

Several phishing campaign kits have been used widely by threat actors in the past....

Stuxnet, The Malware That Propagates To Air-Gapped Networks

Stuxnet, a complex worm discovered in 2010, targeted Supervisory Control and Data Acquisition (SCADA)...

Threat Actors Claiming Breach of AMD Source Code on Hacking Forums

A threat actor named " IntelBroker " claims to have breached AMD in June...
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Free Webinar

API Vulnerability Scanning

71% of the internet traffic comes from APIs so APIs have become soft targets for hackers.Securing APIs is a simple workflow provided you find API specific vulnerabilities and protect them.In the upcoming webinar, join Vivek Gopalan, VP of Products at Indusface as he takes you through the fundamentals of API vulnerability scanning..
Key takeaways include:

  • Scan API endpoints for OWASP API Top 10 vulnerabilities
  • Perform API penetration testing for business logic vulnerabilities
  • Prioritize the most critical vulnerabilities with AcuRisQ
  • Workflow automation for this entire process

Related Articles