CISA confirms hackers are actively exploiting critical ‘Citrix Bleed 2' bug
Security researchers have dubbed the bug 'Citrix Bleed 2' for its similarity to a 2023 security flaw in Citrix NetScaler, a networking product that large companies and governments rely on for allowing their staff to remotely access apps and other resources on their internal networks. Much like the earlier bug, Citrix Bleed 2 can be remotely exploited to extract sensitive credentials from an affected NetScaler device, allowing the hackers broader access to a company's wider network.
In an alert on Thursday, CISA said it had evidence that the bug was being actively used in hacking campaigns, adding to the raft of research and findings pointing to widespread exploitation, with some reporting hacks dating back as far as mid-June. Akamai said it saw a 'drastic increase' in efforts to scan the internet for affected devices after details of the NetScaler exploit were published earlier this week.
CISA said the NetScaler bug poses a 'significant risk' to the federal government's systems, and ordered federal government agencies to patch any Citrix device affected by the bug by Friday.
For its part, Citrix has not yet acknowledged that the vulnerability is being exploited. The company's security advisory urges customers to update affected devices as soon as possible.
Citrix representatives did not respond to TechCrunch's request for comment.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
2 minutes ago
- Yahoo
Sinclair launches strategic review of broadcast unit, weighs spinoff of Ventures
(Reuters) -Sinclair said on Monday its board has authorized a strategic review of the company's broadcast business and it is considering a separation of its Ventures portfolio, sending its shares up 15% in extended trading. The review comes as media companies are exploring options for their cable TV businesses, as audiences rapidly abandon linear TV in favor of streaming platforms. Sinclair owns, operates and provides services to 178 television stations in 81 markets. The Ventures portfolio is comprised of Sinclair's private equity and real-estate assets, a cable network that includes coverage of most of tennis' top tournaments called the Tennis Channel, as well as its ad tech unit, Digital Remedy. "We expect separating Ventures will crystallize significant value that the market has overlooked within our current structure, giving us even more flexibility to drive our broadcast strategy forward," CEO Chris Ripley said. The Ventures business made nearly $11 million in minority investments during the second quarter. The company cautioned that the strategic review may not result in any transaction or change. For the quarter ended June 30, Sinclair's total revenues decreased 5% to $784 million. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
2 minutes ago
- Yahoo
Trump meets with Intel CEO after demanding he resign
US President Donald Trump on Monday said he had a "very interesting" meeting with the chief of US chip maker Intel, just days after calling for his resignation. Trump said on his Truth Social platform that he met with Lip-Bu Tan along with Secretary of Commerce Howard Lutnick and Secretary of Treasury Scott Bessent. "The meeting was a very interesting one," Trump said in the post. "His success and rise is an amazing story." Trump added that members of his cabinet are going to spend time with Tan and bring the president "suggestions" next week. Intel did not respond to a request for comment. Trump demanded last week that the recently-hired boss of Intel resign "immediately," after a Republican senator raised national security concerns over his links to firms in China. "The CEO of INTEL is highly CONFLICTED and must resign, immediately. There is no other solution to this problem," Trump posted on Truth Social last Thursday. Tan released a statement at the time saying that the company was engaged with the Trump administration to address the concerns raised and ensure officials "have the facts." Intel is one of Silicon Valley's most iconic companies but its fortunes have been dwarfed by Asian powerhouses TSMC and Samsung, which dominate the made-to-order semiconductor business. In a statement, Tan said there has been "a lot of misinformation circulating" about his past roles at Walden International and Cadence Design Systems. "I have always operated within the highest legal and ethical standards," Tan said. The Malaysia-born tech industry veteran took the helm at struggling Intel in March, announcing layoffs as White House tariffs and export restrictions muddied the market. Intel's niche has been chips used in traditional computing processes, which are steadily being eclipsed by the AI revolution. gc/bjt Sign in to access your portfolio
Yahoo
2 minutes ago
- Yahoo
Texas businessmen indicted for allegedly bribing officials at Mexico's Pemex
By Stefanie Eschenbacher MEXICO CITY (Reuters) -Two Texas businessmen were indicted for allegedly bribing officials at Mexico's state energy company Pemex with $150,000 and luxury items to secure contracts, the U.S. Justice Department announced on Monday. Between 2019 and 2021, Ramon Rovirosa and Mario Avila, both Mexican citizens and U.S. lawful permanent residents, conspired to pay bribes to officials at Pemex and its exploration and production arm, known as PEP, according to an indictment unsealed in the Southern District of Texas. Rovirosa is also alleged to have ties to Mexican cartel members, the Department of Justice said in a statement. Rovirosa, 46, was arraigned while Avila, 61, remains at large. Reuters was unable to immediately contact the lawyers for Rovirosa and Avila. Pemex did not immediately respond to a request for comment. Together with co-conspirators, Rovirosa and Avila allegedly paid bribes in the form of cash and luxury goods, including from Louis Vuitton and Hublot, to at least three Pemex and PEP officials. In exchange, those Pemex officials are accused of helping companies associated with Rovirosa obtain contracts worth at least $2.5 million, the statement said. Mexico and its ailing state company Pemex have for decades been awash with corruption, with several former senior officials facing charges, including former Chief Executive Officer Emilio Lozoya. Lozoya, in turn, has accused ex-presidents Felipe Calderon and Carlos Salinas of corruption, along with former President Enrique Pena Nieto, his ex-finance minister, Luis Videgaray, and more than a dozen others. Andres Manuel Lopez Obrador, who was Mexican president during the time covered in the indictment, had vowed to root out the corruption that had plagued the country and its most important company for decades. Even so, Mexico's corruption ranking slipped. Rovirosa and Avila are each charged with one count of conspiracy to violate the Foreign Corrupt Practices Act and three substantive violations of it. The act makes it illegal for citizens, U.S. companies, or foreign persons and businesses in the United States to pay foreign officials to win business. Sign in to access your portfolio
