Close Menu

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    What's Hot

    Trump Remakes Washington, D.C., Into a Maze of Fences and Guard Members

    July 2, 2026

    30 Absurdly Patriotic Movies to Stream for the Fourth of July

    July 2, 2026

    This $16 Electric Toothbrush Makes Teeth Feel Dentist-Clean

    July 2, 2026
    Facebook X (Twitter) Instagram
    Trending
    • Trump Remakes Washington, D.C., Into a Maze of Fences and Guard Members
    • 30 Absurdly Patriotic Movies to Stream for the Fourth of July
    • This $16 Electric Toothbrush Makes Teeth Feel Dentist-Clean
    • Stop Calling It SEO: 12 Strategies To Dominate AI Search in 2026
    • Venice AI becomes a unicorn with $65M Series A as its privacy-first AI platform takes off
    • Disney World Confirms Grand Floridian Gingerbread House Won’t Appear This Year.
    • UK May Intervene In $110 Billion Paramount-Warner Bros Discovery Deal
    • Resistance Bands Help Strength Train Without Heavy Weights
    Facebook X (Twitter)
    SBM Global News
    Demo
    • Home
    • Top Stories
      • Politics
    • Business
      • Small Business
      • Marketing
    • Finance
      • Investment
    • Technology

      Venice AI becomes a unicorn with $65M Series A as its privacy-first AI platform takes off

      July 2, 2026
      Read More

      Hyring – Company Profile – AllBusiness.com

      July 1, 2026
      Read More

      Vibe coding platform Base44 launches own model as AI startups seek defensibility

      June 30, 2026
      Read More

      Providus – Company Profile – AllBusiness.com

      June 29, 2026
      Read More

      Why Wall Street thinks US memory maker Micron is the next Nvidia

      June 29, 2026
      Read More
    • Lifestyle
      • Travel
    • Feel Good
    • Get In Touch
    SBM Global News
    Demo
    Home»Technology»CISA says hackers are exploiting a new file transfer bug in Citrix ShareFile
    Technology

    CISA says hackers are exploiting a new file transfer bug in Citrix ShareFile

    By Staff WriterAugust 17, 20232 Mins Read
    Facebook Twitter LinkedIn Reddit Email
    Share
    Facebook Twitter LinkedIn Pinterest Email

    Hackers are exploiting a newly discovered vulnerability in yet another enterprise file transfer software, the U.S. government’s cybersecurity agency has warned.

    CISA on Wednesday added a vulnerability in Citrix ShareFile, tracked as CVE-2023-24489, to its Known Exploited Vulnerabilities (KEV) catalog. The agency warned that the flaw poses “significant risks to the federal enterprise,” and mandated that federal civilian executive branch agencies — CISA included — apply vendor patches by September 6.

    Citrix first released a warning about the vulnerability back in June. The flaw, which was given a vulnerability severity rating of 9.8 out of 10, is described as an improper access control bug that could allow an unauthenticated attacker to remotely compromise customer-managed Citrix ShareFile storage zones controllers, no passwords needed.

    While Citrix ShareFile is predominantly a cloud-based file-transfer tool, it also provides a “storage zones controller” tool that enables organizations to store files on-premise or with supported cloud platforms, such as Amazon S3 and Windows Azure.

    According to Dylan Pindur of Assetnote, who first discovered the vulnerability and warned that it stems from small errors in ShareFile’s implementation of AES encryption, as many as 6,000 organizations had publicly exposed instances as of July.

    “A search online shows roughly 1,000-6,000 instances are internet accessible,” said Pindur. “This popularity, combined with the software being used to store sensitive data, meant if we found anything it could have quite an impact.”

    Threat intelligence startup GreyNoise said it observed a “significant spike” in attacker activity after CISA published its warning about the ShareFile vulnerability.

    The identity of the hackers behind the observed in-the-wild attacks is not yet known.

    Corporate file-transfer software has become a popular target for hackers as these systems often store huge batches of highly sensitive data.

    The Russia-linked Clop ransomware gang alone has claimed responsibility for targeting at least three corporate tools, including Accellion‘s MTA, Fortra’s GoAnywhere MFT, and — most recently — Progress’ MOVEit Transfer.

    According to the latest data from cybersecurity company Emsisoft, the ongoing MOVEit mass-attacks have so far claimed 668 victim organizations, affecting more than 46 million individuals. Just this week, it was revealed that more than four million Americans had their sensitive medical and health information stolen after IBM fell victim to the MOVEit hackers.

    The MOVEit mass hacks hold a valuable lesson for the software industry

    Originally published at techcrunch.com

    devices gadgets notebooks phones tablets technology
    Share. Facebook Twitter LinkedIn Email Reddit
    Previous ArticleWorld’s longest, deepest rail tunnel to close for months after freight derailment in the Swiss Alps
    Next Article Here are Thursday’s biggest analyst calls: Apple, Amazon, Nvidia, Adobe, Pinterest, TJX, SoFi & more

    Related Posts

    Venice AI becomes a unicorn with $65M Series A as its privacy-first AI platform takes off

    July 2, 2026
    Read More

    Hyring – Company Profile – AllBusiness.com

    July 1, 2026
    Read More

    Vibe coding platform Base44 launches own model as AI startups seek defensibility

    June 30, 2026
    Read More
    Add A Comment

    Leave A Reply Cancel Reply

    Demo
    Top Posts

    Former FBI, CIA Head Has ‘Serious Concerns’ With Trump Cabinet Picks

    December 28, 2024435

    Emirates to operate next-gen A350 on the third daily service to Cape Town

    January 14, 2026256

    AAVE Price Prediction: Target $215-225 by Mid-January 2025 as Technical Indicators Signal Bullish Momentum

    December 15, 2025240

    Ventive Hospitality Joins Green Fins: Strong ESG Lift

    February 17, 2026211
    Don't Miss
    Politics

    Trump Remakes Washington, D.C., Into a Maze of Fences and Guard Members

    By Staff WriterJuly 2, 20266 Mins Read

    The Lincoln Memorial Reflecting Pool is surrounded by fencing. So is Lafayette Park, just north…

    Read More

    30 Absurdly Patriotic Movies to Stream for the Fourth of July

    July 2, 2026

    This $16 Electric Toothbrush Makes Teeth Feel Dentist-Clean

    July 2, 2026

    Stop Calling It SEO: 12 Strategies To Dominate AI Search in 2026

    July 2, 2026
    Stay In Touch
    • Facebook
    • Twitter
    Demo
    About Us

    Small Business Minder brings together business and related news from around the world in one place. Follow us for all the business news you'll need.

    Facebook X (Twitter)
    Our Picks

    Trump Remakes Washington, D.C., Into a Maze of Fences and Guard Members

    July 2, 2026

    30 Absurdly Patriotic Movies to Stream for the Fourth of July

    July 2, 2026
    Most Popular

    Former FBI, CIA Head Has ‘Serious Concerns’ With Trump Cabinet Picks

    December 28, 2024435

    Emirates to operate next-gen A350 on the third daily service to Cape Town

    January 14, 2026256
    © 2026 Small Business Minder
    • Home
    • Get In Touch

    Type above and press Enter to search. Press Esc to cancel.

    Ad Blocker Enabled!
    Ad Blocker Enabled!
    Our website is made possible by displaying online advertisements to our visitors. To get the most from our site, please disable your Ad Blocker.