Security news aggregator

Latest coverage for Citrix

Explore the latest Citrix security updates, vulnerabilities, and best practices. Stay informed on protecting your Citrix environment with our insights.

19 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Citrix delivers virtualization and remote access platforms that enable users to run applications and desktops hosted on centralized servers. These technologies support remote work by providing virtualized environments accessible from various devices, often serving as gateways to internal corporate networks. Key components include virtual apps, desktops, and networking tools that facilitate secure connections to enterprise resources.

Citrix environments are critical security targets because vulnerabilities can allow attackers to bypass authentication, execute remote code, or escalate privileges, potentially leading to broader network compromise. Security risks increase with misconfigurations or delayed patching of known flaws. Defenders should prioritize timely updates, enforce strong multi-factor authentication, and monitor remote sessions for unusual activity to reduce exposure to exploitation attempts targeting Citrix infrastructure.

Volume over time

Weekly headline count for the current query.

Showing 19 most recent headlines Filtered view
Bank Info Security 3 months, 2 weeks ago

Breach Roundup: Feds Confirm 'Major' Hack of FBI System

Also, Lloyds Data Leak, Dutch Treasury Breach, Citrix Bug Exploit, Pay2Key ActivityThis week, Lloyds data leak hits 450K, Dutch treasury breach, Citrix flaw exploited, Iran-linked ransomware ops, TrueConf zero-day, Russian fraud ring sentenced, Romania targeted, patch gaps persist, and U.S. hospital breach affects 257K.

Bank Info Security 3 months, 2 weeks ago

Under Fire: Attackers Target Flaws in F5 and Citrix Gear

F5 Revises Severity of Flaw Disclosed Last YearFlaws in major application delivery and security platforms and VPN gateways are being actively exploited or targeted. Under fire: a vulnerability in F5 BIG-IP Access Policy Manager can facilitate remote code execution, and a "memory overread" flaw in NetScaler Application Delivery Controller.

Bank Info Security 8 months, 4 weeks ago

Salt Typhoon Targets European Telecom

Attack Began With Citrix NetScaler Gateway Compromise, Darktrace SaidThe Chinese cyberespionage hackers commonly tracked as Salt Typhoon haven't stopped their campaign against global telecoms, says managed threat detection firm Darktrace. The group has made telecoms and other digital infrastructure a primary target.

Bank Info Security 10 months, 1 week ago

Hackers Turn Red Team AI Tool Into Citrix Exploit Engine

HexStrike-AI Connects LLMs to Over 150 Existing Security ToolsA red-team framework released for penetration testing has become a weapon in the wild, repurposed by hackers to accelerate exploitation of newly disclosed Citrix vulnerabilities. Check Point Research observed chatter suggesting n-day attacks may unfold in minutes, shrinking defender response time.

Bank Info Security 10 months, 3 weeks ago

Citrix NetScaler Devices Yet Again Under Attack

Citrix Publishes Patches After Attackers Exploit Memory Overflow VulnerabilityNetScaler customers of virtualization giant Citrix once again should patch immediately to stymie the hackers exploiting a zero-day. Citrix warned Tuesday that hackers are using a memory overflow vulnerability now tracked as CVE-2025-7775. The vulnerability carries a CVSS score of 9.2.

NCSC-NL Says Hack of Citrix NetScaler Flaw Also Targeted Critical InfrastructureA preliminary assessment by the Dutch NCSC into a suspected Russian hacking campaign has concluded that more than one group likely carried out the May breach of the country’s law enforcement network. Investigators say hacks of Citrix NetScaler flaw also targeted critical infrastructure.

Bank Info Security 11 months, 1 week ago

Dutch Investigators Blame Multiple Threat Actors on Hacks

NCSC-NL Says Hack of Citrix NetScaler Flaw Also Targeted Critical InfrastructureA preliminary assessment by the Dutch NCSC into a suspected Russian hacking campaign has concluded that more than one group likely carried out the May breach of the country’s law enforcement network. Investigators say hacks of Citrix NetScaler flaw also targeted critical infrastructure.

Bank Info Security 11 months, 1 week ago

Dutch Prosecutors Recover From Suspected Russian Hack

Dutch Servers Restored Following Moscow Led AttackThe Dutch Public Prosecution Service on Monday began phased restoration of its networks after a cyberattack last month forced the agency to take down its services offline. The agency confirmed that hackers exploited a vulnerability in a Citrix device.

Ransomware Group Among Attackers Focused on Exploiting Citrix Netscaler FlawSecurity experts warn that attackers have ramped up their collective attempts to find and exploit Citrix NetScaler devices that remain unpatched. Cloud Security Group patched CVE-2025-5777, a flaw also known as "Citrix Bleed 2," nearly four weeks ago with a software update.

Citrix Issues Patches to Counter Active Attacks Against Two Critical VulnerabilitiesAdministrators of Citrix Netscaler devices are being urged to immediately patch their devices to fix two actively exploited vulnerabilities. One, dubbed Citrix Bleed 2, can be abused by hackers to bypass multifactor authentication, hijack user sessions and gain unauthorized access to the equipment.

Also, O Canada, Oh Brother and More Probable Chinese HackingThis week, ransomware kills, Salt Typhoon hit Canada, Russian backdoors, SAP and Citrix patches, China hackers in the oil and energy sector. Brother printers have an unfixable flaw. Ransomware hit a U.S. dairy cooperative. Hackers in Albania and Oxford. European lawmakers heard cybersecurity advice.

AG Says HealthAlliance Tried But Failed to Fix Zero-Day Flaw That Led to ExploitNew York State has levied a $550,000 fine against a healthcare group that tried - but failed - to patch a critical zero-day vulnerability in a Citrix NetScaler appliance used for telemedicine. Hackers exploited the flaw, stealing 196 gigabytes of data in an incident affecting 242,000 people.

deviceTrust, Strong Network Acquisitions Improve Zero Trust, Developer ProtectionsCitrix enhances its security for hybrid work by acquiring deviceTrust and Strong Network. Purchasing these European startups boosts protection for VDI, DaaS and cloud development, empowering organizations to enforce zero-trust principles and reduce risks across their hybrid environments.

Bank Info Security 2 years, 2 months ago

UnitedHealth CEO: Paying Ransom Was 'Hardest Decision' Ever

CEO Tells Congress Attackers Gained Access Via a Citrix Portal; What Happened NextDeciding to pay cybercriminals a ransom in the attack on Change Healthcare was one of the most difficult choices UnitedHealth Group CEO Andrew Witty ever faced, according to written testimony ahead of two congressional hearings this week on the disruptive Change Healthcare mega-hack.

Bank Info Security 2 years, 6 months ago

NetScaler, Atlassian, VMWare Disclose Critical Flaws

Citrix NetScaler ADC and Gateway Bugs Exploited in the WildIT infrastructure mainstays including Netscaler, Atlassain and VMWare on Tuesday released fixes for vulnerabilities including some allowing malicious takeover of appliances. NetScaler warned customers Tuesday of two zero day vulnerabilities that researchers say are being exploited in the wild.

Bank Info Security 2 years, 6 months ago

Cybercriminals Bully Cancer Patients With Swatting Threat

Extortion Demands, Lawsuits Pile Up After Fred Hutchinson Cancer Center HackCybercriminals are extorting some patients and threatening them with swatting in the wake of a recent cyberattack on a Seattle cancer center. The incident, stemming from a Citrix Bleed exploit, has triggered multiple lawsuits and affected the personal data of at least 1 million people.

Bank Info Security 2 years, 7 months ago

Feds, AHA Urge Hospitals to Mitigate Citrix Bleed Threats

Urgent Action Needed to Prevent Ransomware Attacks Involving Vulnerability ExploitA recent spike in ransomware attacks has prompted federal regulators and the American Hospital Association to issue urgent warnings to hospitals and other healthcare firms to prevent potential exploitation of the Citrix Bleed software flaw affecting some NetScaler ADC and NetScaler Gateway devices.

Bank Info Security 2 years, 7 months ago

Amid Citrix Bleed Exploits, NetScaler Warns: Kill Sessions

LockBit and Nation-State Groups Using Session Tokens to Access Patched DevicesWith experts warning that NetScaler ADC and Gateway devices are being exploited by nation-state and cybercrime groups, the manufacturer has again urged all users to "patch immediately as well as terminate active sessions, which attackers can otherwise use to access devices even post-patch.

Bank Info Security 2 years, 7 months ago

Amidst Citrix Bleed Exploits, NetScaler Warns: Kill Sessions

LockBit and Nation-State Groups Using Session Tokens to Access Patched DevicesWith experts warning that NetScaler ADC and Gateway devices are being exploited by nation-state and cybercrime groups, the manufacturer has again urged all users to "patch immediately as well as terminate active sessions, which attackers can otherwise use to access devices even post-patch.