Security News > 2023 > November > Week in review: LockBit exploits Citrix Bleed, Apache ActiveMQ bug exploited for cryptojacking

Week in review: LockBit exploits Citrix Bleed, Apache ActiveMQ bug exploited for cryptojacking
2023-11-26 09:30

How LockBit used Citrix Bleed to breach Boeing and other targetsCVE-2023-4966, aka "Citrix Bleed", has been exploited by LockBit 3.0 affiliates to breach Boeing's parts and distribution business, and "Other trusted third parties have observed similar activity impacting their organization," cybersecurity and law enforcement officials have confirmed on Tuesday.

Apache ActiveMQ bug exploited to deliver Kinsing malwareAttackers are exploiting a recently fixed vulnerability in Apache ActiveMQ to install Kinsing malware and cryptocurrency miners on targeted Linux systems.

Only 9% of IT budgets are dedicated to securityDespite their best efforts, 67% of businesses say they need to improve security and compliance measures with 24% rating their organization's security and compliance strategy as reactive, according to Vanta.

Why boards must prioritize cybersecurity expertiseIn this Help Net Security video, Graeme Payne, US Advisory Service Leader at Kudelski Security, discusses how, with the incredible number of complex threats facing modern businesses, board members must take an increased role in cybersecurity decisions - or face the consequences.

New horizons in cyber protection with 2024 trends to watchIn this Help Net Security video, Fei Huang, VP of Security Strategy at SUSE, dives into the latest cybersecurity predictions, unveiling the trends shaping our online defenses and exploring how innovation will safeguard our digital lives.

Smaller businesses embrace GenAI, overlook security measuresOrganizations are feeling the pressure to rush into generative AI tool usage, despite significant security concerns, according to Zscaler.


News URL

https://www.helpnetsecurity.com/2023/11/26/week-in-review-lockbit-exploits-citrix-bleed-apache-activemq-bug-exploited-for-cryptojacking/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2023-10-10 CVE-2023-4966 Unspecified vulnerability in Citrix products
Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA ?virtual?server. 
network
low complexity
citrix
7.5

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Apache 305 58 853 656 313 1880
Citrix 116 19 175 79 65 338