
We Got Hit By This
Found exploitation code in a random directory. Luckily, we detected the intrusion before anything went active, but it was close.
Patch those servers folks.
Welcome to another Register security roundup. Here are a few stories that caught our eye. Citrix vulnerability hit by working exploit Late last month Citrix disclosed a critical security hole (CVE-2019-19781) in its Application Delivery Controller and Unified Gateway offerings (VPN products formerly known as Netscaler ADC and …
Yeah - wasn't great timing for the announcement or release though. 17th of December Citrix announced it. No problem if you've got a dedicated security or patching team, but for a small company with clients pushing to get stuff rammed through before the Christmas freeze it's a headache.
We received no alerts from Citrix, and basically stumbled across the news before patching it.