There are some media reports recently about a hack of the Citrix corporate network have been that originated with a threat actors access to a Citrix marketing content management server to win. I want our customers to solve this problem, and to clarify some elements of the industry.
A threat actor has said he used to access a single server obtained content for the stage GoTo family of web sites, a server for easy access to website content and marketing materials for campaign configured. The Content Management Server under question contained no customer, employee or other sensitive or confidential information.
Although the content management server allows anonymous access to content, not enough to write anonymous access metadata changes to production. claims that a threat actor production Web could change site content, web server configurations, or to access internal Citrix Systems are not the facts. The server has been reconfigured and administrative passwords have been changed.
I would also like to clarify some confusion regarding Share File. While in this opposite outwardly content management system, identifies the threat actor a password to an account Share File that reveals images and other marketing materials previously contained. Related, identifies the threat actor token an application programming interface for the read-only rights to this File Share Account. re not a customer, employee or other sensitive or confidential information has been exposed, and this old, unused Share File account has been disabled and the read-only API key to this revoked account.
Finally we have no evidence that this threat has accessed actor systems other than the single content management server. we the environment for unauthorized access and changes will continue to monitor.
Thanks,
Stan Black
Chief Security Officer
0 Komentar