Chinese Hackers Exploiting Unpatched Devices to Target U.S. Agencies

Posted by & filed under Ειδοποιήσεις.

The US Cybersecurity and Infrastructure Security Agency (CISA) issued a new advisory on Monday about a wave of cyberattacks carried by Chinese nation-state actors targeting US government agencies and private entities. “CISA has observed Chinese [Ministry of State Security]-affiliated cyber threat actors operating from the People’s Republic of China using commercially available information sources and open-source exploitation… Read more »

Ragnarok Ransomware Targets Citrix ADC, Disables Windows Defender

Posted by & filed under Ειδοποιήσεις.

A new ransomware called Ragnarok has been detected being used in targeted attacks against unpatched Citrix ADC servers vulnerable to the CVE-2019-19781 exploit. Last week, FireEye released a report about new attacks exploiting the now patched Citrix ADC vulnerability to install the new Raganarok Ransomware on vulnerable networks. When attackers are able to compromise a Citrix ADC device, various scripts would… Read more »

PoC Exploits Released for Citrix ADC and Gateway RCE Vulnerability

Posted by & filed under Ειδοποιήσεις.

It’s now or never to prevent your enterprise servers running vulnerable versions of Citrix application delivery, load balancing, and Gateway solutions from getting hacked by remote attackers. Why the urgency? Earlier today, multiple groups publicly released weaponized proof-of-concept exploit code [1, 2] for a recently disclosed remote code execution vulnerability in Citrix’s NetScaler ADC and Gateway… Read more »