Arabic Arabic Chinese (Simplified) Chinese (Simplified) Dutch Dutch English English French French German German Italian Italian Portuguese Portuguese Russian Russian Spanish Spanish
| (844) 627-8267

Chinese State Hackers Exploit Zero-Day Vulnerabilities in Citrix Networking Equipment | Robinson+Cole Data Privacy + Security Insider | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker


[co-author: Blair Robinson]*

According to the National Security Agency, actors backed by the Chinese government are actively targeting a zero-day vulnerability in two commonly-used Citrix networking devices.

The exploit (CVE-2022-27518) affects Citrix ADC, an application delivery controller, and Citrix Gateway, a remote access tool. Both devices are standard in mid-to-large enterprise networks. Analysts at the National Institute for Standards and Technology (NIST) categorize the exploit as ”critical,” the highest risk level, for its broad potential impact and ease of execution.

Citrix pushed out an emergency patch for the vulnerability last week and is urging customers using affected builds of Citrix ADC and Citrix Gateway to install the updates immediately. Compliance Officers and Chief Information Security Officers may wish to consider heeding this warning and apply the firmware patch to affected devices ASAP, outside of regular update cycles if necessary.

*Non-Lawyer Intern

[View source.]

——————————————————–


Click Here For The Original Story From This Source.

National Cyber Security

FREE
VIEW