Cisa Confirms Hackers Are Actively Exploiting Critical ‘citrix Bleed 2’ Bug

U.S. cybersecurity agency CISA says hackers are actively exploiting a critical-rated information flaw successful a wide utilized Citrix product, and has fixed different national authorities departments conscionable 1 time to spot their systems.

Security researchers person dubbed nan bug “Citrix Bleed 2” for its similarity to a 2023 information flaw successful Citrix NetScaler, a networking merchandise that ample companies and governments trust connected for allowing their unit to remotely entree apps and different resources connected their soul networks. Much for illustration the earlier bug, Citrix Bleed 2 tin beryllium remotely exploited to extract delicate credentials from an affected NetScaler device, allowing nan hackers broader entree to a company’s wider network.

In an alert connected Thursday, CISA said it had grounds that nan bug was being actively utilized successful hacking campaigns, adding to nan raft of research and findings pointing to wide exploitation, pinch immoderate reporting hacks making love backmost as acold arsenic mid-June. Akamai said it saw a “drastic increase” successful efforts to scan nan net for affected devices aft specifications of nan NetScaler utilization were published earlier this week.

CISA said nan NetScaler bug poses a “significant risk” to nan national government’s systems, and ordered national authorities agencies to spot immoderate Citrix instrumentality affected by nan bug by Friday.

For its part, Citrix has not yet acknowledged that nan vulnerability is being exploited. The company’s security advisory urges customers to update affected devices arsenic soon arsenic possible. 

Citrix representatives did not respond to TechCrunch’s petition for comment.