Close Menu

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    What's Hot

    Trump’s Unexpected ‘Threesome’ Comment Is Grossing Everyone Out

    July 3, 2026

    How Long Do Leftovers Last? The 3 to 4 Day Rule Explained

    July 3, 2026

    Do These Heat Wave Hacks Work?

    July 3, 2026
    Facebook X (Twitter) Instagram
    Trending
    • Trump’s Unexpected ‘Threesome’ Comment Is Grossing Everyone Out
    • How Long Do Leftovers Last? The 3 to 4 Day Rule Explained
    • Do These Heat Wave Hacks Work?
    • What are semantic keywords? Here’s how to find & use them
    • Last chance to apply — Startup Battlefield Australia applications close July 6
    • Avoid These Common Travel Mistakes in a Heat Wave
    • AAVE Price Prediction: Momentum Flatlines at $86 — Bears Eye $80 Before Bulls Get Another Shot
    • Trump-Linked Firm’s Fees for Organizing Freedom 250 Events Remain Secret
    Facebook X (Twitter)
    SBM Global News
    Demo
    • Home
    • Top Stories
      • Politics
    • Business
      • Small Business
      • Marketing
    • Finance
      • Investment
    • Technology

      Last chance to apply — Startup Battlefield Australia applications close July 6

      July 3, 2026
      Read More

      Performedia – Company Profile – AllBusiness.com

      July 2, 2026
      Read More

      Venice AI becomes a unicorn with $65M Series A as its privacy-first AI platform takes off

      July 2, 2026
      Read More

      Hyring – Company Profile – AllBusiness.com

      July 1, 2026
      Read More

      Vibe coding platform Base44 launches own model as AI startups seek defensibility

      June 30, 2026
      Read More
    • Lifestyle
      • Travel
    • Feel Good
    • Get In Touch
    SBM Global News
    Demo
    Home»Technology»Hackers exploit Citrix zero-day to target US critical infrastructure
    Technology

    Hackers exploit Citrix zero-day to target US critical infrastructure

    By Staff WriterJuly 25, 20233 Mins Read
    Facebook Twitter LinkedIn Reddit Email
    Share
    Facebook Twitter LinkedIn Pinterest Email

    Thousands of companies could be at risk from an actively exploited Citrix zero-day that hackers have already abused to target at least one critical infrastructure organization in the United States.

    Citrix last week sounded the alarm about the critical-rated flaw, tracked as CVE-2023-3519 with a severity rating of 9.8 out of 10, which impacts NetScaler ADC and NetScaler Gateway devices. These enterprise-facing products are designed for secure application delivery and providing VPN connectivity, and are used extensively worldwide, particularly within critical infrastructure organizations.

    Citrix warned that the zero-day could allow an unauthenticated, remote attacker to run arbitrary code on a device and said it has evidence that the vulnerability was exploited in the wild. Citrix released security updates to the vulnerability on July 18 and is urging customers to install the patches as soon as possible.

    Days after Citrix’s warning, U.S. cybersecurity agency CISA revealed that the vulnerability had been exploited against a U.S. critical infrastructure organization in June, and was reported to the agency earlier in July.

    CISA said that hackers exploited the flaw to drop a webshell on the organization’s NetScaler ADC appliance, enabling them to collect and exfiltrate data from the organization’s Active Directory, including information about users, groups, applications, and devices on the network. But because the targeted appliance was isolated within the organization’s network, the hackers were unable to move laterally and compromise the domain controller.

    While this organization successfully managed to ward off the hackers targeting its systems, thousands of other organizations could be at risk. The Shadowserver Foundation, a non-profit organization that works to make the internet more secure, said it has found over 15,000 Citrix servers worldwide at risk of compromise unless patches are applied.

    The largest number of unpatched servers are based in the U.S. (5,700), followed by Germany (1,500), the UK (1,000) and Australia (582), according to their analysis.

    It’s not yet known who is behind the exploitation of this vulnerability, but Citrix vulnerabilities have been known to be exploited by both financially motivated cybercriminals and state-sponsored threat actors, including groups linked to China.

    In a blog post published over the weekend, researchers at Mandiant said that while they cannot yet attribute the intrusions to any known threat group, the activity is “consistent with previous operations by China-nexus actors based on known capabilities and actions against Citrix ADC’s in 2022.” Mandiant added that the intrusions are likely part of an intelligence-gathering campaign, noting that espionage-motivated threat actors continue to target technologies that do not support endpoint detection and response solutions, such as firewalls, IoT devices, hypervisors and VPNs.

    “Mandiant has investigated dozens of intrusions at defense industrial base (DIB), government, technology, and telecommunications organizations over the years where suspected China-nexus groups have exploited zero-day vulnerabilities and deployed custom malware to steal user credentials and maintain long-term access to the victim environments,” the researchers said.

    NSA says Chinese hackers are exploiting a zero-day bug in popular networking gear

    Originally published at techcrunch.com

    devices gadgets notebooks phones tablets technology
    Share. Facebook Twitter LinkedIn Email Reddit
    Previous ArticleBitcoin Drops to $29K as WSJ Ratchets Up Binance Issues, China Warns of Tortuous Recovery
    Next Article Bunq, the Dutch neobank, has raised $111M at a flat $1.8B valuation to break into the US

    Related Posts

    Last chance to apply — Startup Battlefield Australia applications close July 6

    July 3, 2026
    Read More

    Performedia – Company Profile – AllBusiness.com

    July 2, 2026
    Read More

    Venice AI becomes a unicorn with $65M Series A as its privacy-first AI platform takes off

    July 2, 2026
    Read More
    Add A Comment

    Leave A Reply Cancel Reply

    Demo
    Top Posts

    Former FBI, CIA Head Has ‘Serious Concerns’ With Trump Cabinet Picks

    December 28, 2024435

    Emirates to operate next-gen A350 on the third daily service to Cape Town

    January 14, 2026256

    AAVE Price Prediction: Target $215-225 by Mid-January 2025 as Technical Indicators Signal Bullish Momentum

    December 15, 2025240

    Ventive Hospitality Joins Green Fins: Strong ESG Lift

    February 17, 2026211
    Don't Miss
    Politics

    Trump’s Unexpected ‘Threesome’ Comment Is Grossing Everyone Out

    By Staff WriterJuly 3, 20262 Mins Read

    President Donald Trump on Wednesday used a word most people don’t expect to hear from…

    Read More

    How Long Do Leftovers Last? The 3 to 4 Day Rule Explained

    July 3, 2026

    Do These Heat Wave Hacks Work?

    July 3, 2026

    What are semantic keywords? Here’s how to find & use them

    July 3, 2026
    Stay In Touch
    • Facebook
    • Twitter
    Demo
    About Us

    Small Business Minder brings together business and related news from around the world in one place. Follow us for all the business news you'll need.

    Facebook X (Twitter)
    Our Picks

    Trump’s Unexpected ‘Threesome’ Comment Is Grossing Everyone Out

    July 3, 2026

    How Long Do Leftovers Last? The 3 to 4 Day Rule Explained

    July 3, 2026
    Most Popular

    Former FBI, CIA Head Has ‘Serious Concerns’ With Trump Cabinet Picks

    December 28, 2024435

    Emirates to operate next-gen A350 on the third daily service to Cape Town

    January 14, 2026256
    © 2026 Small Business Minder
    • Home
    • Get In Touch

    Type above and press Enter to search. Press Esc to cancel.

    Ad Blocker Enabled!
    Ad Blocker Enabled!
    Our website is made possible by displaying online advertisements to our visitors. To get the most from our site, please disable your Ad Blocker.