At the US Census Bureau, Hackers attacked Citrix with a vulnerability

 At the US Census Bureau, Hackers attacked Citrix with a vulnerability



The US Census Bureau servers were tackled by hackers in the Citrix Application Delivery Controller on 11 January 2020, following the exploiting of today's major vulnerability (CVE-2019-19781) (ADC).


In Citrix ADC, Gateway and WANOP, CVE-2019-19781 is a major vulnerability. Remote attackers could successfully exploit the problem to execute arbitrary code on servers and access the internal network of an organisation without authenticating.


"The firewalls of the Bureau stopped efforts by the attacker to communicate with their C&C server on January 13, 2020 during the attack on remote-access servers. "The Office of the Inspector General (OIG) reported in a recent report that it was ignorant of server packing until 28 January 2020, which was almost 2 weeks long.


While attackers could hack the servers of the desktop and create false administration accounts that would allow the malicious code to be executed remotely, it was not possible to install backdoors to keep the servers accessible and fulfil their objectives. The Bureau has also failed to notice and disclose the incident on time after the servers were compromised. Due to limited system logs, investigation of the incident was slowed.


No Census Bureau-kept data had been compromised, manipulated or lost due to the incident, stated OIG.


On December 17, 2019, and released a security update on January 24, 2020 that solves the issue, Citrix found the security vulnerability and remedied the issue.


Post a Comment

Previous Post Next Post

POST ADS1

POST ADS 2