Towards the end of last week Citrix identified a major vulnerability within NetScaler (the appliance Citrix connections come in via) and released a critical patch for it. Dubbed CitrixBleed 2, this could allow attackers to bypass authentication mechanisms, including multifactor authentication (MFA), and hijack user sessions. More information is available here.
Due to the ease of exploit, the fact that it is being actively targeted by hacking groups and the significant security risk; we decided to patch affected systems immediately. Our team worked diligently over the weekend to implement this major update, which required extensive hours and also necessitated reconfiguring the Duo MFA setup across all affected systems simultaneously.
This vulnerability highlights the importance of devices being enrolled in our managed security services such as Remote Management and Monitoring (RMM). This allows us to be very quick and agile in response to security threats, by easily identifying all affected systems and applying the appropriate remediation.
For more information on any of the above, please contact your Connect Systems Account Manager or get in touch with us here and we’ll be happy to help you.
< Back