A Russian hacker claims to have broken into the systems operated by Citrix, and had access to a potentially large number of clients.
The binary destroyer known as "w0rm" exploits the weak powers - l'press@citrix.com username and password Citrix 123 - to enter the content management system that powers the websites of Citrix.
W0rm published the results in October on his blog and forum antichat security.
The hacker had access to administrative functions, including remote support, Citrix exam dumps and security breaches informed, but has received no response. Israeli firm CyberInt stumbled to the report, and again notified the IT company was not answered.
CyberInt Elad Ben-Meir said the attack could have w0rm or another to reproduce the steps to undermine Citrix customers.
"In essence, if he wanted, could allow malicious programs in all end-user Citrix each client," Ben-Meir said indicating possible attacks include keylogging, data exfiltration, and slavery botnet.
W0rm has already attacked the BBC, the Wall Street Journal, and vice, and offered to sell for money stolen bases data.
The attacker apparently tried to warn the organizations concerned before the vulnerabilities make public details.
No comments:
Post a Comment
Note: only a member of this blog may post a comment.