Your IT Consultant

Information Technology Blog
by John W. Simek, Vice President of Sensei Enterprises, Inc.

China Attacking Citrix Flaw

December 14, 2022

The Register reports that Citrix’s Application Delivery Control (ADC) and Gateway products are under attack from a cybercrime group linked to China. The group is exploiting a zero-day flaw to take over impacted systems. These versions are affected.

  • Citrix ADC and Citrix Gateway 13.0 before 13.0-58.32
  • Citrix ADC and Citrix Gateway 12.1 before 12.1-65.25
  • Citrix ADC 12.1-FIPS before 12.1-55.291
  • Citrix ADC 12.1-NDcPP before 12.1-55.291

The advice from Citrix is to apply the recently released patches and enable audit logging. Shocker. You should already have the maximum amount of logging enabled and be applying all updates as they become available.

Email:   Phone: 703.359.0700
Digital Forensics/Cybersecurity/Information Technology
https://www.linkedin.com/in/johnsimek
https://amazon.com/author/johnsimek
https://senseient.com