LockBit Ransomware Affiliates Leverage Citrix Bleed Vulnerability (CVE-2023-4966)

7 March 2024

CVE-2023-4966 stems from a session management issue in the web-based management interface used to configure Citrix NetScaler ADCs and gateways. By sending specially crafted HTTP requests, attackers can indefinitely reset the login timeout timer.

Source: BlackFog

Date:

7 March 2024

Categorie(s):

NEWS

Tag(s):

Affiliates, Citrix Bleed, Ransomware, Security Pro, Vulnerability

Scumbag puts ‘stolen’ Nokia source code, SSH and RSA keys, more up for sale6 November 2024
Canada arrests suspected hacker over breach of 160+ Snowflake users’ data6 November 2024
Cyberthreats linked to foreign actors aim to hinder Election Day proceedings5 November 2024
DocuSign’s API used to lure victims into e-signing fake invoices5 November 2024
Schneider Electric ransomware crew demands $125k paid in baguettes5 November 2024