Citrix releases first fixes for ADC bug
Citrix has released the first permanent fixes for the critical vulnerability recently found in versions of the Citrix Application Delivery Controller (ADC) software that is now being actively exploited.
The Australian Cyber Security Centre warned last week that cybercriminals are performing scans for organisations vulnerable to the exploit, which potentially enables arbitrary code execution. At the time there was no patch available.
Citrix has now released fixes for two versions of the Citrix ADC, as well as the Citrix Gateway Virtual Appliances. The company has also brought forward to Friday its planned release date for fixes for the remaining impacted ADC versions, as well as its SD-WAN optimisation service.
The company is urging businesses to apply the fixes immediately. Companies still running the yet-to-be-patched versions of the software have been advised to implement Citrix's list of previously released mitigation steps and then use a provided tool to ensure they have been implemented correctly.
Citrix added that it has assigned extra staff to its support centres to guide customers through the patch implementation process if needed.
US issues warrants for five alleged APT41 members
The US Department of Justice has issued warrants for five alleged members of the APT41 cybercrime...
Evolving threat landscape a concern for cybersecurity analysts
A survey by Gartner has found that cybersecurity analysts are concerned about the rapidly...
Gartner: Businesses must balance risk, trust and opportunity
Security and risk leaders have been advised to balance risk, trust and opportunity to help their...
