The alert from the Department of Health and Human Services Health Sector Cybersecurity Coordination Center on Nov. 30 and the AHA warning on Friday come amid an outbreak of ransomware attacks alleged to involve Citrix Bleed exploitation that has hit companies in the healthcare and other sectors in recent weeks.
This blog will cover the threats and everything related to the Citrix Bleed flaw.
CySecurity News had already reported on a Citrix bleed bug delivering sharp blows earlier in November 2023.
The AHA cautioned that exploiting the vulnerability allows hackers to evade password constraints and multifactor authentication mechanisms.
According to HHS HC3, the vulnerability has been routinely exploited since August.
Citrix issued a patch for the vulnerability in early October, but the firm warned that compromised sessions would remain active after the patch was applied.
Also read: NetScaler's report to know full details about Citrix Bleed Threat.
This Cyber News was published on www.cysecurity.news. Publication date: Thu, 07 Dec 2023 16:43:06 +0000