Thousands of Citrix servers still vulnerable to CVE-2022-27510 and CVE-2022-27518 

Researchers warn of thousands of Citrix Application Delivery Controller (ADC) and Gateway endpoints are still unpatched. NCC Group’s Fox-IT research team warns of thousands of Citrix ADC and Gateway endpoints remain vulnerable to two critical vulnerabilities, tracked as CVE-2022-27510 and CVE-2022-27518 (CVSS scores: 9.8), that the company addressed in recent months. CVE-2022-27510 flaw is an authentication bypass using an […]

Continue Reading

State-sponsored attackers actively exploiting RCE in Citrix devices, patch ASAP!

An unauthenticated remote code execution flaw (CVE-2022-27518) is being leveraged by a Chinese state-sponsored group to compromise Citrix Application Delivery Controller (ADC) deployments, the US National Security Agency has warned. “Targeting Citrix ADCs can facilitate illegitimate access to targeted organizations by bypassing normal authentication controls.” About CVE-2022-27518 CVE-2022-27518 stems from the vulnerable devices’ software failing […]

Continue Reading

Citrix ADC and Citrix Gateway are affected by a critical authentication bypass flaw

Citrix released security updates to address a critical authentication bypass vulnerability in Citrix ADC and Citrix Gateway. Citrix is urging customers to install security updates to address a critical authentication bypass issue, tracked as CVE-2022-27510, in Citrix ADC and Citrix Gateway. The company addressed the following three vulnerabilities: CVE-2022-27510 – The flaw is an authentication […]

Continue Reading

Kyndryl and Citrix join forces to help businesses improve workplace collaboration

Kyndryl has announced a global alliance with Citrix to help businesses improve workplace collaboration and employee productivity to address the rapidly changing requirements of today’s hybrid workforce on a global scale. By leveraging the longstanding operational and industry expertise of Kyndryl’s Digital Workplace Services, powered by Citrix DaaS, both companies will continue to develop end-to-end […]

Continue Reading

A critical flaw in Citrix Application Delivery Management allows resetting admin passwords

Citrix fixed a critical flaw in Citrix Application Delivery Management (ADM), tracked as CVE-2022-27511, that can allow attackers to reset admin passwords. Citrix fixed a critical vulnerability in Citrix Application Delivery Management (ADM), tracked as CVE-2022-27511, that can be exploited by attackers to reset admin passwords. Citrix Application Delivery Management (ADM) is a comprehensive platform […]

Continue Reading

Citrix collaborates with Microsoft to help companies accelerate their digital transformations

Citrix announced it is working with Microsoft on an upcoming offering that combines Citrix’s high-definition user experience (HDX) technology, IT policy control, and ecosystem flexibility with Windows 365, offering IT administrators streamlined Citrix user licensing and employees a seamless switch to Citrix clients through Microsoft Endpoint Manager and windows365.microsoft.com. Enabling the future of work “Work […]

Continue Reading

DaaS might be the future of work

The move to hybrid work is on. And to support and accelerate it, IT executives are counting on Desktop as a Service (DaaS). According to the results of a Pulse survey conducted by Citrix Systems, nearly 75 percent of 300 IT and security leaders across North America, EMEA, and APAC say DaaS is a key […]

Continue Reading

How do I select an API security solution for my business?

As the importance of Application Programming Interfaces (APIs) continues to grow and API traffic accelerates, there’s a growing need to make sure it completes its tasks securely. Traditional applications security controls are still needed, but can’t quite stand up to the challenges of API security. To select a suitable API security solution, you need to […]

Continue Reading

Why security strategies need a new perspective

After a stream of ransomware campaigns, data leaks, and attacks on critical infrastructure, businesses understand their digitization strategy needs to be complemented by a well-designed cybersecurity strategy. But, confronted with a complex and confusing threat landscape and an equally multi-faceted security vendor landscape, many are uncertain what their security strategy should look like. In the […]

Continue Reading