The Netherlands faced a significant Citrix related incident in 2019. The Dutch Safety Board investigated... report linked below.

It is now 2025, and another Citrix related incident has led to the NL public prosecutor office going offline.

I'm curious to see the report on the previous report :)

https://onderzoeksraad.nl/en/onderzoek/vulnerable-through-software-lessons-resulting-from-security/

#CitrixBleed2 exploited weeks before PoCs as #Citrix denied attacks

https://www.bleepingcomputer.com/news/security/citrix-bleed-2-exploited-weeks-before-pocs-as-citrix-denied-attacks/

Citrix Bleed 2: Critical Netscaler security gap exploited for almost a month

In the last week of June, suspected Chinese actors were already looking for vulnerable Netscaler devices. Citrix has a tip for its customers.

https://www.heise.de/en/news/Citrix-Bleed-2-Critical-Netscaler-security-gap-exploited-for-almost-a-month-10492588.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

CitrixBleed 2: 100 Organizations Hacked, Thousands of Instances Still Vulnerable https://www.securityweek.com/citrixbleed-2-100-organizations-hacked-thousands-of-instances-still-vulnerable/ #Vulnerabilities #CitrixBleed2 #CitrixBleed2 #exploited #Citrix

CitrixBleed 2: 100 Organizations Hacked, Thousands of Instances Still Vulnerable https://www.securityweek.com/citrixbleed-2-100-organizations-hacked-thousands-of-instances-still-vulnerable/ #Vulnerabilities #CitrixBleed2 #CitrixBleed2 #exploited #Citrix

Ernstige kwetsbaarheden in Citrix Netscaler ADC en NetScaler Gateway.
https://www.digitaltrustcenter.nl/nieuws/ernstige-kwetsbaarheden-in-citrix-netscaler-adc-en-netscaler-gateway
#cybersecurity #citrix

Citrix Bleed 2: Kritische Netscaler-Lücke wird seit fast einem Monat ausgenutzt

Bereits in der letzten Juniwoche suchten mutmaßlich chinesische Akteure gezielt nach verwundbaren Netscaler-Geräten. Citrix hat einen Tipp für seine Kunden.

https://www.heise.de/news/Citrix-Bleed-2-Kritische-Netscaler-Luecke-wird-seit-fast-einem-Monat-ausgenutzt-10492320.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

Vanwege bezorgdheid over een beveiligingsprobleem in de digitale werkomgeving, is het #OpenbaarMinisterie offline. Het #OM sluit niet uit dat er misbruik is gemaakt van een lek.

„Analyse heeft reden gegeven aan te nemen dat gebruik is gemaakt van deze #kwetsbaarheid.”

"Het OM gebruikt de software Netscaler van het Amerikaanse bedrijf #Citrix."

#CitrixSucks

https://www.nrc.nl/nieuws/2025/07/18/openbaar-ministerie-is-offline-vanwege-ernstige-zorgen-over-ict-beveiliging-datalek-niet-uitgesloten-a4900617

#Today one of my colleagues put my attention on this article, and to be honest I do love the reporting style. Meme's and writing like this?

"The ‘good news’, I suspect, is that most orgs will be too lacking in logs to have evidence."

"China go brrr"

At least it's not dry

https://doublepulsar.com/citrixbleed-2-situation-update-everybody-already-got-owned-503c6d06da9f

CitrixBleed 2 Flaw Poses Unacceptable Risk: CISA https://www.securityweek.com/citrixbleed-2-flaw-poses-unacceptable-risk-cisa/ #Vulnerabilities #CitrixBleed2 #CitrixBleed2 #exploited #CISAKEV #Citrix

CitrixBleed 2 Flaw Poses Unacceptable Risk: CISA https://www.securityweek.com/citrixbleed-2-flaw-poses-unacceptable-risk-cisa/ #Vulnerabilities #CitrixBleed2 #CitrixBleed2 #exploited #CISAKEV #Citrix

#CISA tags #CitrixBleed2 as exploited, gives agencies a day to patch

https://www.bleepingcomputer.com/news/security/cisa-tags-citrix-bleed-2-as-exploited-gives-agencies-a-day-to-patch/

Critical #CitrixBleed 2 #vulnerability has been under active #exploit for weeks

A critical vulnerability allowing #hackers to bypass #multifactor #authentication in network management devices made by #Citrix has been actively #exploited for more than a month, researchers said. The finding is at odds with advisories from the vendor saying there is no evidence of in-the-wild #exploitation.
#security #privacy

https://arstechnica.com/security/2025/07/critical-citrixbleed-2-vulnerability-has-been-under-active-exploit-for-weeks/

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises – Source:thehackernews.com https://ciso2ciso.com/cisa-adds-citrix-netscaler-cve-2025-5777-to-kev-catalog-as-active-exploits-target-enterprises-sourcethehackernews-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #TheHackerNews #Citrix

Critical CitrixBleed 2 vulnerability has been under active exploit for weeks - A critical vulnerability allowing hackers to bypass multifac... - https://arstechnica.com/security/2025/07/critical-citrixbleed-2-vulnerability-has-been-under-active-exploit-for-weeks/ #vulnerabilities #citrixbleed #security #hacking #biz⁢ #citrix

Check for CitrixBleed 2 exploitation even if you patched quickly! (CVE-2025-5777) https://www.helpnetsecurity.com/2025/07/08/cve-2025-5777-indicators-of-compromise/ #Horizon3ai #ReliaQuest #Don'tmiss #NetScaler #WatchTowr #Hotstuff #exploit #Citrix #News #PoC

Public exploits released for #CitrixBleed 2 #NetScaler flaw, patch now

https://www.bleepingcomputer.com/news/security/public-exploits-released-for-citrixbleed-2-netscaler-flaw-patch-now/

#Citrix warns of login issues after #NetScaler auth bypass patch

https://www.bleepingcomputer.com/news/security/citrix-warns-of-login-issues-after-netscaler-auth-bypass-patch/

Over 1,200 #Citrix servers unpatched against critical auth bypass flaw

https://www.bleepingcomputer.com/news/security/over-1-200-citrix-servers-unpatched-against-critical-auth-bypass-flaw/

Thousands of Citrix NetScaler Instances Unpatched Against Exploited Vulnerabilities https://www.securityweek.com/thousands-of-citrix-netscaler-instances-unpatched-against-exploited-vulnerabilities/ #Vulnerabilities #CitrixBleed2 #exploited #Citrix