#vulnerableendpoints

LockBit ransomware exploits Citrix Bleed in attacks, 10K servers exposed

by

November 14, 2023 at 03:05PM LockBit ransomware attacks are exploiting the Citrix Bleed vulnerability (CVE-2023-4966) to breach large organizations’ systems, steal data, and encrypt files. Despite Citrix releasing fixes for the vulnerability over a month ago, thousands of vulnerable appliances are still running, many in the U.S. LockBit affiliates are likely responsible for the attacks, … Read more

‘Mass exploitation’ of Citrix Bleed underway as ransomware crews pile in

by

October 31, 2023 at 04:48PM The critical information-disclosure bug known as Citrix Bleed is being heavily exploited. Over 5,000 vulnerable servers have been identified on the public internet. Even after patching the flaw, session tokens can still be used. Multiple ransomware gangs are involved in the mass exploitation, and the vulnerability is being targeted across … Read more