all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Ransomware group exploits Citrix NetScaler systems for initial access

Add to bookmarks
Aug. 29, 2023, 11:38 a.m. | Helga Labus

Help Net Security www.helpnetsecurity.com

A known threat actor specializing in ransomware attacks is believed to be behind a recent campaign that targeted unpatched internet-facing Citrix NetScaler systems to serve as an initial foothold into enterprise networks. “Our data indicates strong similarity between attacks using CVE-2023-3519 and previous attacks using a number of the same TTPs,” Sophos researchers shared. Citrix systems under attack In mid-July 2023, a zero-day remote code execution (RCE) vulnerability (CVE-2023-3519) started getting exploited in the wild. … More


The post …

access actor attacks campaign citrix citrix netscaler cve cve-2023-3519 data don't miss enterprise enterprise networks exploit exploits facing hot stuff initial access internet netscaler networks ransomware ransomware attacks ransomware group similarity sophos systems threat threat actor ttps unpatched vulnerability

Visit resource

More from www.helpnetsecurity.com / Help Net Security

1Password Extended Access Management secures unmanaged applications and devices 7 hours ago | www.helpnetsecurity.com
1password access access management application +18
New SOHO router malware aims for cloud accounts, internal company resources 9 hours ago | www.helpnetsecurity.com
account accounts actor alibaba +38
Trend Micro expands AI-powered cybersecurity platform 9 hours ago | www.helpnetsecurity.com
adoption advancements ai-powered ai tools +16
HITRUST updates Cyber Threat Adaptive engine to address emerging cyber threats 10 hours ago | www.helpnetsecurity.com
accuracy address advanced ai capabilities +27
Secure Code Warrior SCW Trust Score quantifies the security posture of developer teams 10 hours ago | www.helpnetsecurity.com
benchmark code developer effectively +13
Proofpoint DLP Transform secures data moving to ChatGPT, copilots, and other GenAI tools 10 hours ago | www.helpnetsecurity.com
address businesses cases chatgpt +24
Appdome launches MobileEDR, merging MTD and EDR to protect enterprise mobile apps 10 hours ago | www.helpnetsecurity.com
agentless amp app appdome +27
Confluent enhances Apache Flink with new features for easier AI and broader stream processing 11 hours ago | www.helpnetsecurity.com
ai model apache cloud confluent +18
Nord Security unveils NordStellar, a platform for advanced cyber threat detection and response 11 hours ago | www.helpnetsecurity.com
access accounts advanced and response +38

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

DevSecOps Engineer

@ LinQuest | Beavercreek, Ohio, United States
View on infosec-jobs.com

Senior Developer, Vulnerability Collections (Contractor)

@ SecurityScorecard | Remote (Turkey or Latin America)
View on infosec-jobs.com

Cyber Security Intern 03416 NWSOL

@ North Wind Group | RICHLAND, WA
View on infosec-jobs.com

Senior Cybersecurity Process Engineer

@ Peraton | Fort Meade, MD, United States
View on infosec-jobs.com

Sr. Manager, Cybersecurity and Info Security

@ AESC | Smyrna, TN 37167, Smyrna, TN, US | Santa Clara, CA 95054, Santa Clara, CA, US | Florence, SC 29501, Florence, SC, US | Bowling Green, KY 42101, Bowling Green, KY, US
View on infosec-jobs.com
View more jobs