Stan Black: Citrix Launches Forensic Investigation Into Internal Network Breach

Stan Black, chief security and information officer at Citrix, has said the company was informed by the FBI on Wednesday that international cyber hackers may have accessed and downloaded documents through a tactic that uses weak passwords called password spraying.

Black wrote in a blog post published Friday that Citrix has launched a forensic investigation, sought the help of a cybersecurity firm and initiated actions to protect its internal network in response to the incident.

“The specific documents that may have been accessed, however, are currently unknown,” Black noted.

“At this time, there is no indication that the security of any Citrix product or service was compromised.”

NBC News reported Saturday that a group of Iranian-backed threat actors called Iridium was behind the breach, stealing over six terabytes of data using compromised employee accounts.

Cyber firm Resecurity told the publication the company initially detected in December the cyber attack, which was followed by another one on Monday.

Charles Yoo, president of Resecurity, said Iridium was also linked to other breaches targeting government agencies and oil and gas firms.
 

You may also be interested in...

Seth Cutler CISO NetApp

NetApp’s Seth Cutler: AI Can Support Agency Data Security, Compliance Efforts

Seth Cutler, chief information security officer of NetApp, has said implementing artificial intelligence tools can help the public sector manage data protection, compliance and risks as agencies increase the pace of digital transformation projects to address cybersecurity threats.

Cybersecurity

DIU Taps CounterCraft to Help Deploy, Mature Threat Intell Prototype

The Defense Innovation Unit has awarded threat intelligence technology maker CounterCraft an other transaction agreement to mature the company’s counterintelligence tool in an effort to improve the protection of Department of Defense systems.

Palo Alto Networks

Palo Alto Networks Gets FedRAMP Approval for Three Data Security Products

Palo Alto Networks has added three cloud products to its suite of government-approved offerings under the Federal Risk and Authorization Management Program. The Palo Alto Networks Government Cloud Services now includes the Prisma Cloud, Cortex XDR and Cortex Data Lake platforms that have received moderate FedRAMP authorization with the help of the Federal Housing Finance Agency, the company said Monday.