What is the issue - Citrix learned from FBI on March 6, 2019, that cybercriminals gained unauthorized access to Citrix internal network.
What was compromised - Stan Black, CSIO of Citrix, said that attackers gained access to Citrix internal network and downloaded business documents. However, the specific documents downloaded by the attackers remains unknown.
What happened - FBI advised Citrix that the attackers might have used a ‘tactic known as password spraying, a technique that exploits weak passwords’ to gain access to Citrix internal network.
What was the immediate action taken?
“Citrix has taken action to contain this incident. We commenced a forensic investigation; engaged a leading cyber security firm to assist; took actions to secure our internal network; and continue to cooperate with the FBI,” Black said in a security notice.
“Citrix deeply regrets the impact this incident may have on affected customers. Citrix is committed to updating customers with more information as the investigation proceeds, and to continuing to work with the relevant law enforcement authorities,” Black concluded.