- American multinational software company Citrix has disclosed a breach in its internal networks.
- Hackers were able to gain access to its internal networks and steal some business documents.
- No products or services was compromised in the breach.
- The company discovered breach after being notified by the FBI.
Citrix, an American multinational software company disclosed a security breach saying that hackers were able to gain access to its internal networks.
On March 6, 2019, FBI notified Citrix about a possible security breach in their system and found out cybercriminals were able to gain access to its internal networks.
“On March 6, 2019, the FBI contacted Citrix to advise they had reason to believe that international cybercriminals gained access to the internal Citrix network.”
Hackers were able to access and download some business documents. The company also confirmed no Citrix products and service were impacted by the breach.
According to reports hackers who infiltrated Citrix networks are believed to be part of international cybercriminal groups.
Hackers are believed to be gained access to the networks using password spraying technique and once they gain limited access, they attempt to gain more privileges.
The company said they secured the network and hired a leading cybersecurity firm to assist their forensic investigation.
“Citrix deeply regrets the impact this incident may have on affected customers. Citrix is committed to updating customers with more information as the investigation proceeds, and to continuing to work with the relevant law enforcement authorities. “ said in the post published by the company.
According to the report published by NBC News, the attack was carried out by Iranian-linked hacking group known as Iridium. Hackers were able to steal at least 6 to 10 terabytes of data.
“Iridium broke its way into Citrix’s network about 10 years ago, and has been lurking inside the company’s system ever since.” said in the post published by NBC News.
You may be interested in reading:New Zero-day flaw in Google Chrome Discovered Actively Exploited in the Wild