What it means — CitrixBleed ransomware group woes grow as over 60 credit unions, hospitals, financial services and more breached in US.
How CitrixBleed vulnerablity in Netscale has become the cybersecurity challenge of 2023.
Credit union technology firm Trellance own Ongoing Operations LLC, and provide a platform called Fedcomp — used by double digit number of other credit unions across the United States. This Fedcomp platform was not patched for CitrixBleed, as no Netscaler patches had been applied since May 2023:
https://medium.com/media/4a58b28f03539c59594d14bc139f10de/href
A ransomware group gained entry to Trellance via Ongoing Operations. You can read about some of the fallout here. Ongoing Operations’ two Netscaler devices remain offline. This is disrupting operations in a way which impacts millions of Americans.
HTC Global Services, aka HTC Inc, aka Caretech — a large MSP for the US healthcare sector with remote access to hospitals across the US, did not patch Netscaler since July 2023:
https://medium.com/media/4a8dd6963e6acbbe6fa8cd88cccec303/href
HTC Global Services are currently being held to extortion by AlphV ransomware group, who display stolen documents on their ransomware portal which are branded Caretech, a division of HTC.
Earlier in the week, the BBC reported that a ‘cyber incident’ (ransomware) at CTS, a legal tech firm (cloud MSP) in the UK, is leaving UK home sales in limbo:
Cyber-attack leaves home sales in limbo
CTS own Sprout IT as a core brand:
Sprout IT ran Netscaler and hadn’t patched it until late.
ABC report homebuying in the US has stalled due to a ransomware incident at Fidelity National Financial. AlphV ransomware group also claimed them:
This article has been indexed from DoublePulsar – Medium