Citrix claims that, “there is no indication that the security of any Citrix product or service was compromised.” However, it has yet to determine (and/or publicly disclose) the exact scope and type of information that was breached. Citrix has initiated a forensic investigation and is engaging external consultants for assistance.
Resecurity speculates that this attack began over Christmas holidays. According to Citrix’s blog post, the FBI notified Citrix about the ongoing compromise on Wednesday, March 6, 2019. For further updates on this event, stay tuned to Citrix’s blog.
Commonly amongst data breaches, the end user is the weakest link. Two-factor authentication is not enough to protect against weak passwords. As a means to circumvent the problem, you should consider doing the following:
Incidents like this are the new normal – settle in.
Azure-based Windows Virtual Desktops are Microsoft’s next generation of VDI licensing options. Does the cost justify the benefit?
AWS has provided valuable new features for managing container networking. But this tasty secret sauce may prove addictive.