Bleeping Computer

Almost 2,000 Citrix NetScaler servers backdoored in hacking campaign

A threat actor has compromised close to 2,000 thousand Citrix NetScaler servers in a massive campaign exploiting the critical-severity remote code execution tracked as CVE-2023-3519. More than 1,200 ...
Infosecurity-magazine.com

Citrix Patches Three NetScaler Zero Days as One Sees Active Exploitation

Citrix has released patches for three zero-day vulnerabilities in NetScaler ADC and Gateway, one of which was already being exploited by attackers. The flaws, tracked as CVE-2025-7775, CVE-2025-7776, ...
Infosecurity-magazine.com

LockBit Affiliates are Exploiting Citrix Bleed, Government Agencies Warn

Several government agencies and cybersecurity organizations have raised the alarm in response to multiple threat actor groups exploiting Citrix Bleed, a vulnerability affecting Citrix’s NetScaler web ...
CRN

‘Critical’ Citrix NetScaler Vulnerability Now Seeing Exploitation: CISA

The U.S. cybersecurity agency ordered Federal Civilian Executive Branch agencies to implement fixes for the issue by end of day Friday. A critical-severity vulnerability affecting two Citrix NetScaler ...
Bleeping Computer

Latest Citrix ADC news

More than 28,200 Citrix instances are vulnerable to a critical remote code execution vulnerability tracked as CVE-2025-7775 that is already being exploited in the wild. A recent vulnerability in ...
CSOonline

Exploit details released for Citrix Bleed 2 flaw affecting NetScaler

Amid confusing reports about Citrix NetScaler exploits in the wild, researchers offer technical analyses and indicators of compromise for one of the vulnerabilities dubbed Citrix Bleed 2 that can lead ...