mastodon.ie

The New OilOver 3,000 <a href="https://mastodon.thenewoil.org/tags/NetScaler" class="mention hashtag" rel="nofollow noopener" target="_blank">#NetScaler</a> devices left unpatched against <a href="https://mastodon.thenewoil.org/tags/CitrixBleed2" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed2</a> bug<a href="https://www.bleepingcomputer.com/news/security/over-3-000-netscaler-devices-left-unpatched-against-actively-exploited-citrixbleed-2-flaw/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/over-3-000-netscaler-devices-left-unpatched-against-actively-exploited-citrixbleed-2-flaw/</a><a href="https://mastodon.thenewoil.org/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a> <a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a>

DrWhaxPerhaps the EU should only allow Tailscale like VPN's for remote connectivity... <a href="https://infosec.exchange/tags/citrixbleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#citrixbleed</a>

GreyNoiseGreyNoise observed exploitation of CitrixBleed 2 (CVE-2025-5777) nearly two weeks before a public PoC was released. Full breakdown: <a href="https://www.greynoise.io/blog/exploitation-citrixbleed-2-cve-2025-5777-before-public-poc" rel="nofollow noopener" translate="no" target="_blank">https://www.greynoise.io/blog/exploitation-citrixbleed-2-cve-2025-5777-before-public-poc</a> <a href="https://infosec.exchange/tags/GreyNoise" class="mention hashtag" rel="nofollow noopener" target="_blank">#GreyNoise</a> <a href="https://infosec.exchange/tags/ThreatIntel" class="mention hashtag" rel="nofollow noopener" target="_blank">#ThreatIntel</a> <a href="https://infosec.exchange/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a> <a href="https://infosec.exchange/tags/Citrix" class="mention hashtag" rel="nofollow noopener" target="_blank">#Citrix</a> <a href="https://infosec.exchange/tags/NetScaler" class="mention hashtag" rel="nofollow noopener" target="_blank">#NetScaler</a>

PrivacyDigestCritical <a href="https://mas.to/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a> 2 <a href="https://mas.to/tags/vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#vulnerability</a> has been under active <a href="https://mas.to/tags/exploit" class="mention hashtag" rel="nofollow noopener" target="_blank">#exploit</a> for weeksA critical vulnerability allowing <a href="https://mas.to/tags/hackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#hackers</a> to bypass <a href="https://mas.to/tags/multifactor" class="mention hashtag" rel="nofollow noopener" target="_blank">#multifactor</a> <a href="https://mas.to/tags/authentication" class="mention hashtag" rel="nofollow noopener" target="_blank">#authentication</a> in network management devices made by <a href="https://mas.to/tags/Citrix" class="mention hashtag" rel="nofollow noopener" target="_blank">#Citrix</a> has been actively <a href="https://mas.to/tags/exploited" class="mention hashtag" rel="nofollow noopener" target="_blank">#exploited</a> for more than a month, researchers said. The finding is at odds with advisories from the vendor saying there is no evidence of in-the-wild <a href="https://mas.to/tags/exploitation" class="mention hashtag" rel="nofollow noopener" target="_blank">#exploitation</a>. <a href="https://mas.to/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://mas.to/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#privacy</a><a href="https://arstechnica.com/security/2025/07/critical-citrixbleed-2-vulnerability-has-been-under-active-exploit-for-weeks/" rel="nofollow noopener" translate="no" target="_blank">https://arstechnica.com/security/2025/07/critical-citrixbleed-2-vulnerability-has-been-under-active-exploit-for-weeks/</a>

IT NewsThis Week in Security: Bitchat, CitrixBleed Part 2, Opossum, and TSAs - @jack is back with a weekend project. Yes, that Jack. [Jack Dorsey] spent last wee... - <a href="https://hackaday.com/2025/07/11/this-week-in-security-bitchat-citrixbleed-part-2-opossum-and-tsas/" rel="nofollow noopener" translate="no" target="_blank">https://hackaday.com/2025/07/11/this-week-in-security-bitchat-citrixbleed-part-2-opossum-and-tsas/</a> <a href="https://schleuss.online/tags/thisweekinsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#thisweekinsecurity</a> <a href="https://schleuss.online/tags/hackadaycolumns" class="mention hashtag" rel="nofollow noopener" target="_blank">#hackadaycolumns</a> <a href="https://schleuss.online/tags/securityhacks" class="mention hashtag" rel="nofollow noopener" target="_blank">#securityhacks</a> <a href="https://schleuss.online/tags/citrixbleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#citrixbleed</a> <a href="https://schleuss.online/tags/bitchat" class="mention hashtag" rel="nofollow noopener" target="_blank">#bitchat</a> <a href="https://schleuss.online/tags/opossum" class="mention hashtag" rel="nofollow noopener" target="_blank">#opossum</a> <a href="https://schleuss.online/tags/mcp" class="mention hashtag" rel="nofollow noopener" target="_blank">#mcp</a>

IT NewsCritical CitrixBleed 2 vulnerability has been under active exploit for weeks - A critical vulnerability allowing hackers to bypass multifac... - <a href="https://arstechnica.com/security/2025/07/critical-citrixbleed-2-vulnerability-has-been-under-active-exploit-for-weeks/" rel="nofollow noopener" translate="no" target="_blank">https://arstechnica.com/security/2025/07/critical-citrixbleed-2-vulnerability-has-been-under-active-exploit-for-weeks/</a> <a href="https://schleuss.online/tags/vulnerabilities" class="mention hashtag" rel="nofollow noopener" target="_blank">#vulnerabilities</a> <a href="https://schleuss.online/tags/citrixbleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#citrixbleed</a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://schleuss.online/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener" target="_blank">#biz</a>⁢ <a href="https://schleuss.online/tags/citrix" class="mention hashtag" rel="nofollow noopener" target="_blank">#citrix</a>

AmgineI am saddened to see how English <a href="https://mamot.fr/tags/Wikipedia" class="mention hashtag" rel="nofollow noopener" target="_blank">#Wikipedia</a> has been scrubbed of mentioning <a href="https://mamot.fr/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a> - there appears to be only one mention, and it casts doubt on the existence and exploitation of CVE-2023-4966 — <a href="https://en.wikipedia.org/wiki/NetScaler#Security_issues:_Citrix_Bleed" rel="nofollow noopener" translate="no" target="_blank">https://en.wikipedia.org/wiki/NetScaler#Security_issues:_Citrix_Bleed</a>Now, with <a href="https://mamot.fr/tags/CitrixBleed2" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed2</a>, there will be a lot of people trying to brush up on the history and risks of the <a href="https://mamot.fr/tags/vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#vulnerability</a>, and the world's most-used reference has almost nothing to help.<a href="https://doublepulsar.com/citrixbleed-2-exploitation-started-mid-june-how-to-spot-it-f3106392aa71" rel="nofollow noopener" translate="no" target="_blank">https://doublepulsar.com/citrixbleed-2-exploitation-started-mid-june-how-to-spot-it-f3106392aa71</a>h/t <a href="https://cyberplace.social/@GossiTheDog" class="u-url mention" rel="nofollow noopener" target="_blank">@GossiTheDog</a> <a href="https://mamot.fr/tags/WP" class="mention hashtag" rel="nofollow noopener" target="_blank">#WP</a> <a href="https://mamot.fr/tags/marketing" class="mention hashtag" rel="nofollow noopener" target="_blank">#marketing</a> <a href="https://mamot.fr/tags/erasure" class="mention hashtag" rel="nofollow noopener" target="_blank">#erasure</a>

The New OilPublic exploits released for <a href="https://mastodon.thenewoil.org/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a> 2 <a href="https://mastodon.thenewoil.org/tags/NetScaler" class="mention hashtag" rel="nofollow noopener" target="_blank">#NetScaler</a> flaw, patch now<a href="https://www.bleepingcomputer.com/news/security/public-exploits-released-for-citrixbleed-2-netscaler-flaw-patch-now/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/public-exploits-released-for-citrixbleed-2-netscaler-flaw-patch-now/</a><a href="https://mastodon.thenewoil.org/tags/cyberscurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cyberscurity</a> <a href="https://mastodon.thenewoil.org/tags/Citrix" class="mention hashtag" rel="nofollow noopener" target="_blank">#Citrix</a>

Pyrzout :vm:‘CitrixBleed 2’ Shows Signs of Active Exploitation – Source: www.darkreading.com <a href="https://ciso2ciso.com/citrixbleed-2-shows-signs-of-active-exploitation-source-www-darkreading-com/" rel="nofollow noopener" translate="no" target="_blank">https://ciso2ciso.com/citrixbleed-2-shows-signs-of-active-exploitation-source-www-darkreading-com/</a> <a href="https://social.skynetcloud.site/tags/rssfeedpostgeneratorecho" class="mention hashtag" rel="nofollow noopener" target="_blank">#rssfeedpostgeneratorecho</a> <a href="https://social.skynetcloud.site/tags/DarkReadingSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#DarkReadingSecurity</a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurityNews</a> <a href="https://social.skynetcloud.site/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a>' <a href="https://social.skynetcloud.site/tags/DARKReading" class="mention hashtag" rel="nofollow noopener" target="_blank">#DARKReading</a>

Pyrzout :vm:CitrixBleed 2 Vulnerability Exploited, Recalling Earlier CitrixBleed Fallout – Source: www.infosecurity-magazine.com <a href="https://ciso2ciso.com/citrixbleed-2-vulnerability-exploited-recalling-earlier-citrixbleed-fallout-source-www-infosecurity-magazine-com/" rel="nofollow noopener" translate="no" target="_blank">https://ciso2ciso.com/citrixbleed-2-vulnerability-exploited-recalling-earlier-citrixbleed-fallout-source-www-infosecurity-magazine-com/</a> <a href="https://social.skynetcloud.site/tags/rssfeedpostgeneratorecho" class="mention hashtag" rel="nofollow noopener" target="_blank">#rssfeedpostgeneratorecho</a> <a href="https://social.skynetcloud.site/tags/InfoSecurityMagazine" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSecurityMagazine</a> <a href="https://social.skynetcloud.site/tags/InfosecurityMagazine" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfosecurityMagazine</a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurityNews</a> <a href="https://social.skynetcloud.site/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a>'

The New OilNew '<a href="https://mastodon.thenewoil.org/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a> 2' <a href="https://mastodon.thenewoil.org/tags/NetScaler" class="mention hashtag" rel="nofollow noopener" target="_blank">#NetScaler</a> flaw let hackers hijack sessions<a href="https://www.bleepingcomputer.com/news/security/new-citrixbleed-2-netscaler-flaw-let-hackers-hijack-sessions/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/new-citrixbleed-2-netscaler-flaw-let-hackers-hijack-sessions/</a><a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://mastodon.thenewoil.org/tags/Citrix" class="mention hashtag" rel="nofollow noopener" target="_blank">#Citrix</a> <a href="https://mastodon.thenewoil.org/tags/NetScaler" class="mention hashtag" rel="nofollow noopener" target="_blank">#NetScaler</a>

securityaffairsCitrixBleed 2: The nightmare that echoes the '<a href="https://infosec.exchange/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a>' flaw in <a href="https://infosec.exchange/tags/NetScaler" class="mention hashtag" rel="nofollow noopener" target="_blank">#NetScaler</a> devices <a href="https://securityaffairs.com/179339/hacking/citrixbleed-2-the-nightmare-that-echoes-the-citrixbleed-flaw-in-netscaler-devices.html" rel="nofollow noopener" translate="no" target="_blank">https://securityaffairs.com/179339/hacking/citrixbleed-2-the-nightmare-that-echoes-the-citrixbleed-flaw-in-netscaler-devices.html</a> <a href="https://infosec.exchange/tags/securityaffairs" class="mention hashtag" rel="nofollow noopener" target="_blank">#securityaffairs</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a>

Kevin BeaumontPrior recaps on <a href="https://cyberplace.social/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a> and LockBit by me: <a href="https://doublepulsar.com/lockbit-ransomware-group-assemble-strike-team-to-breach-banks-law-firms-and-governments-4220580bfcee" rel="nofollow noopener" translate="no" target="_blank">https://doublepulsar.com/lockbit-ransomware-group-assemble-strike-team-to-breach-banks-law-firms-and-governments-4220580bfcee</a><a href="https://doublepulsar.com/mass-exploitation-of-citrixbleed-vulnerability-including-a-ransomware-group-1405cbb9de18" rel="nofollow noopener" translate="no" target="_blank">https://doublepulsar.com/mass-exploitation-of-citrixbleed-vulnerability-including-a-ransomware-group-1405cbb9de18</a><a href="https://doublepulsar.com/what-it-means-citrixbleed-ransom-group-woes-grow-as-over-60-credit-unions-hospitals-47766a091d4f" rel="nofollow noopener" translate="no" target="_blank">https://doublepulsar.com/what-it-means-citrixbleed-ransom-group-woes-grow-as-over-60-credit-unions-hospitals-47766a091d4f</a>

Kevin BeaumontThe Boeing <a href="https://cyberplace.social/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a> incident led to a $200m ransom demand: <a href="https://cyberscoop.com/boeing-confirms-attempted-200-million-ransomware-extortion-attempt/" rel="nofollow noopener" translate="no" target="_blank">https://cyberscoop.com/boeing-confirms-attempted-200-million-ransomware-extortion-attempt/</a>

Kevin BeaumontAnother <a href="https://cyberplace.social/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a>, this one from mid November. 200k people impacted. HT <a href="https://infosec.exchange/@euroinfosec" class="u-url mention" rel="nofollow noopener" target="_blank">@euroinfosec</a> <a href="https://apps.web.maine.gov/online/aeviewer/ME/40/5f9aa393-9c7a-49e0-855f-5e36adfb9e6c.shtml" rel="nofollow noopener" translate="no" target="_blank">https://apps.web.maine.gov/online/aeviewer/ME/40/5f9aa393-9c7a-49e0-855f-5e36adfb9e6c.shtml</a>

Hugo Tunius :rust:The Church of Sweden(Svenska Kyrkan) was ransomwared on the 23rd of November. This is now being attributed to BlackCat.Here's a <a href="https://infosec.exchange/tags/Citrixbleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#Citrixbleed</a> vulnerable server serving a wildcard cert for *.svenskakyrkan.se, last scanned by Shodan on the 23rd. Probably not related at all

Marcus "MajorLinux" SummersLike I always say, update yo stuff!Comcast held a virtual door open for thieves to steal data - Desk Chair Analysts <a href="https://dcanalysts.net/comcast-held-a-virtual-door-open-for-thieves-to-steal-data/" rel="nofollow noopener" translate="no" target="_blank">https://dcanalysts.net/comcast-held-a-virtual-door-open-for-thieves-to-steal-data/</a><a href="https://toot.majorshouse.com/tags/Citrix" class="mention hashtag" rel="nofollow noopener" target="_blank">#Citrix</a> <a href="https://toot.majorshouse.com/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a> <a href="https://toot.majorshouse.com/tags/Comcast" class="mention hashtag" rel="nofollow noopener" target="_blank">#Comcast</a> <a href="https://toot.majorshouse.com/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> <a href="https://toot.majorshouse.com/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#Security</a> <a href="https://toot.majorshouse.com/tags/Xfinity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Xfinity</a> <a href="https://toot.majorshouse.com/tags/TechNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#TechNews</a> <a href="https://toot.majorshouse.com/tags/DCA" class="mention hashtag" rel="nofollow noopener" target="_blank">#DCA</a>

Avoid the Hack! :donor:<a href="https://infosec.exchange/tags/Comcast" class="mention hashtag" rel="nofollow noopener" target="_blank">#Comcast</a> Xfinity data breach affects over 35 million peopleA <a href="https://infosec.exchange/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a> fatality.Data accessed includes customer usernames and hashed* passwords. Xfinity is forcing password changes next time you sign into an account.In some cases data accessed may include:- Last 4 of SSN - DOBs - Secret Questions / Answers exposed<a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/xfinity" class="mention hashtag" rel="nofollow noopener" target="_blank">#xfinity</a><a href="https://www.theverge.com/2023/12/18/24007082/xfinity-data-breach-hack-notice-citrix" rel="nofollow noopener" translate="no" target="_blank">https://www.theverge.com/2023/12/18/24007082/xfinity-data-breach-hack-notice-citrix</a>

IT NewsXfinity waited 13 days to patch critical Citrix Bleed 0-day. Now it’s paying the price - Enlarge / A Comcast Xfinity service van in San Ramon, California on Feb... - <a href="https://arstechnica.com/?p=1992160" rel="nofollow noopener" translate="no" target="_blank">https://arstechnica.com/?p=1992160</a> <a href="https://schleuss.online/tags/networkbreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#networkbreach</a> <a href="https://schleuss.online/tags/citrixbleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#citrixbleed</a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://schleuss.online/tags/comcast" class="mention hashtag" rel="nofollow noopener" target="_blank">#comcast</a> <a href="https://schleuss.online/tags/xfinity" class="mention hashtag" rel="nofollow noopener" target="_blank">#xfinity</a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener" target="_blank">#biz</a>&it

securityaffairs<a href="https://infosec.exchange/tags/Comcast" class="mention hashtag" rel="nofollow noopener" target="_blank">#Comcast</a>’s <a href="https://infosec.exchange/tags/Xfinity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Xfinity</a> customer data exposed after <a href="https://infosec.exchange/tags/CitrixBleed" class="mention hashtag" rel="nofollow noopener" target="_blank">#CitrixBleed</a> attack <a href="https://securityaffairs.com/156147/data-breach/comcasts-xfinity-customer-data-exposed-after-citrixbleed-attack.html" rel="nofollow noopener" translate="no" target="_blank">https://securityaffairs.com/156147/data-breach/comcasts-xfinity-customer-data-exposed-after-citrixbleed-attack.html</a> <a href="https://infosec.exchange/tags/securityaffairs" class="mention hashtag" rel="nofollow noopener" target="_blank">#securityaffairs</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a> <a href="https://infosec.exchange/tags/Citrix" class="mention hashtag" rel="nofollow noopener" target="_blank">#Citrix</a>

Recent searches

Search options

Administered by:

Server stats:

#citrixbleed