- Cybercriminals were accessing the data from the breached networks between October 13, 2018 and March 8, 2019.
- The cybercriminals had exfiltrated sensitive information of both current and former employees.
In March 2019, the American multinational software company Citrix had disclosed that threat actors had ransacked its complete network systems to steal over 6TB of data. However, its latest report reveals that the attackers had intermittent access to the firm’s networks for a period of five months.
What is the update?
In its latest breach notification, Citrix has revealed that the cybercriminals were accessing the data through the breached networks between October 13, 2018 and March 8, 2019. During that time, the actors had removed files from systems, which may include information about the current and former employees along with data related to beneficiaries.
“Following receipt of this information, we immediately launched an investigation, which remains ongoing. We currently believe that the cybercriminals had intermittent access to our network between October 13, 2018 and March 8, 2019 and that they removed files from our systems, which may have included files containing information about our current and former employees and, in limited cases, information about beneficiaries and/or dependents,” said the firm in its notification.
What information was involved?
The cybercriminals exfiltrated sensitive information of both current and former employees. The compromised information may include names, Social Security numbers and financial data of the employees.
What measures have been taken?
Citrix is working with a third-party cybersecurity firm as well as with FBI to investigate the matter. It is also monitoring its systems for any suspicious activities. In addition, it has also enhanced the security of its critical infrastructures in order to prevent future attacks.
The firm has notified its customers about the incident. It is also providing a free credit monitoring service to potentially affected users.