Citrix – Computer Security Articles

MalwareBytes Security

Update now! February’s Patch Tuesday tackles three zero-days

February 15, 2023 admin adobe, apple, atlassian, Cisco, Citrix, cve-2023-21529, cve-2023-21706, cve-2023-21707, cve-2023-21715, cve-2023-21716, cve-2023-21823, cve-2023-22501, cve-2023-23376, cve-2023-23378, cve-2023-24483, cve-2023-24484, cve-2023-24486, cve-2023-25136, Exploits and vulnerabilities, forta, goanywhere, google, microsoft, Mozilla, news, onenote, openssh, Patch Tuesday, SAP

Categories: Exploits and vulnerabilities

Categories: News

Tags: patch Tuesday

Tags: Microsoft

Tags: Apple

Tags: Adobe

Tags: SAP

Tags: Citrix

Tags: Cisco

Tags: Atlassian

Tags: Google

Tags: Mozilla

Tags: Forta

Tags: OpenSSH

Tags: CVE-2023-21823

Tags: CVE-2023-21715

Tags: OneNote

Tags: CVE-2023-23376

Tags: CVE-2023-21706

Tags: CVE-2023-21707

Tags: CVE-2023-21529

Tags: CVE-2023-21716

Tags: CVE-2023-23378

Tags: CVE-2023-22501

Tags: CVE-2023-24486

Tags: CVE-2023-24484

Tags: CVE-2023-24484

Tags: CVE-2023-24483

Tags: CVE-2023-25136

Tags: GoAnywhere

Microsoft has released updates to patch three zero-days and lots of other vulnerabilities and so have several other vendors

(Read more…)

The post Update now! February’s Patch Tuesday tackles three zero-days appeared first on Malwarebytes Labs.

MalwareBytes Security

Update now! Two zero-days fixed in 2022’s last patch Tuesday

December 14, 2022 admin Android, apple, Cisco, Citrix, cve-2022-41076, cve-2022-44670, cve-2022-44676, cve-2022-44698, cve-2022-44710, Exploits and vulnerabilities, fortinet, google, microsoft, motw, Mozilla, news, Patch Tuesday, race condition, remote powershell, SAP

Categories: Exploits and vulnerabilities

Categories: News

Tags: patch Tuesday

Tags: Microsoft

Tags: Android

Tags: Apple

Tags: Mozilla

Tags: Google

Tags: Sap

Tags: Citrix

Tags: Fortinet

Tags: Cisco

Tags: CVE-2022-44698

Tags: MotW

Tags: CVE-2022-44710

Tags: race condition

Tags: CVE-2022-44670

Tags: CVE-2022-44676

Tags: CVE-2022-41076

Tags: remote powershell

The last patch Tuesday of 2022 is here—find out what Microsoft and many others have fixed

(Read more…)

The post Update now! Two zero-days fixed in 2022’s last patch Tuesday appeared first on Malwarebytes Labs.

Security Sophos

BlackCat ransomware attacks not merely a byproduct of bad luck

July 14, 2022 admin blackcat, Citrix, esxi, Featured, SophosLabs Uncut, threat research, VMware, VPN

Credit to Author: Andrew Brandt| Date: Thu, 14 Jul 2022 11:05:03 +0000

Older hardware and outdated operating systems contribute to attacks

MalwareBytes Security

Update now—July Patch Tuesday patches include fix for exploited zero-day

July 13, 2022 admin adobe, azure site recovery, Cisco, Citrix, csrss, cve-2022-22029, cve-2022-22038, cve-2022-22039, cve-2022-22047, cve-2022-30221, Exploits and vulnerabilities, google android, Patch Tuesday, SAP, SQL Injection, VMware

Credit to Author: Pieter Arntz| Date: Wed, 13 Jul 2022 12:21:53 +0000

July’s Patch Tuesday gives us a lot of important security updates. Most prominently, a known to be exploited vulnerability in Windows CSRSS.

The post Update now—July Patch Tuesday patches include fix for exploited zero-day appeared first on Malwarebytes Labs.

MalwareBytes Security

Update now! Microsoft patches Follina, and many other security updates

June 15, 2022 admin adobe, atlassian, Citrix, confluence, cve-2022-26397, cve-2022-30136, cve-2022-30139, cve-2022-30163, cve-2022-30190, drupal, Exploits and vulnerabilities, follina, gitlab, google, Hyper-V, ldap, msdt, nfs, Patch Tuesday, SAP, synlapse

Credit to Author: Pieter Arntz| Date: Wed, 15 Jun 2022 13:17:05 +0000

Patch Tuesday for June 2022 brought a fix for Follina and many other security vulnerabilities. Time to figure out what needs to be prioritized.

The post Update now! Microsoft patches Follina, and many other security updates appeared first on Malwarebytes Labs.

MalwareBytes Security

A week in security (January 13 – 19)

January 20, 2020 admin a week in security, apt40, Cisco, Citrix, data enrichment, deepfakes, elastic servers, emotet, rootkit, travelex, weleakinfo

Credit to Author: Malwarebytes Labs| Date: Mon, 20 Jan 2020 16:32:45 +0000

Our weekly security roundup for January 13-19, with a look at elastic servers, data enrichment, rootkits, regulation for deepfakes, and more.

Categories:

A week in security

Tags: apt40 Cisco citrix data enrichment deepfakes elastic servers emotet rootkit travelex weleakinfo

(Read more…)

The post A week in security (January 13 – 19) appeared first on Malwarebytes Labs.

Independent Krebs

A Breach, or Just a Forced Password Reset?

December 4, 2018 admin A Little Sunshine, Aite Group, auth0, Citrix, HaveIBeenPwned.com, Jamie Buranich, Julie Conroy, Okta, ShareFile, Troy Hunt

Credit to Author: BrianKrebs| Date: Tue, 04 Dec 2018 21:45:51 +0000

Software giant Citrix Systems recently forced a password reset for many users of its Sharefile content collaboration service, warning it would be doing this on a regular basis in response to password-guessing attacks that target people who re-use passwords across multiple Web sites. Many Sharefile users interpreted this as a breach at Citrix and/or Sharefile, but the company maintains that’s not the case. Here’s a closer look at what happened, and some ideas about how to avoid a repeat of this scenario going forward.