Tag: cyber incident

Canadian Centre for Cyber Security Recommends Disconnecting Vulnerable Citrix Devices from the Internet

Canadian Centre for Cyber Security Recommends Disconnecting Vulnerable Citrix Devices from the Internet

Information Security, IT Support
Canadian Centre for Cyber Security Recommends Disconnecting Vulnerable Citrix Devices from the Internet The Canadian Centre for Cyber Security has issued a security alert, advising Canadian organizations to disconnect their Citrix devices from the internet to prevent cyber-attacks. According to the Canadian Centre for Cyber Security, ongoing exploitation of the security vulnerability in Citrix devices officially designated as CVE-2019-19781 has been observed within Canada. The security vulnerability in Citrix devices allows an attacker to gain direct access to an organization’s local network from the internet. In exploiting this vulnerability, an attacker doesn’t need access to any accounts. As such, exploitation can be performed by any attacker. Citrix, for its part, said that CVE-2019-19781, if exploited, could allow an unauthenticated attacker to perform arbitrary code execution. This vulnerability is rated Critical,…
Read More
Insider Threat: Threat Within Your Organization

Insider Threat: Threat Within Your Organization

Security
Insider Threat: Threat Within Your Organization Not all cyber threats come from malicious outsiders. Cyber threats could also come within your organization. The recent data breach at the US regional banking giant SunTrust is an example of an insider threat.  According to SunTrust, a former employee of the company got hold of the contact details, including name, address, phone number and certain account balances of nearly 1.5 million of the company’s clients. "Ensuring personal information security is fundamental to our purpose as a company of advancing financial well-being," Bill Rogers, SunTrust chairman and CEO, said in a statement. "We apologize to clients who may have been affected by this. We have heightened our monitoring of accounts and increased other security measures. While we have not identified significant fraudulent activity, we…
Read More

Tag: cyber incident

Canadian Centre for Cyber Security Recommends Disconnecting Vulnerable Citrix Devices from the Internet

Canadian Centre for Cyber Security Recommends Disconnecting Vulnerable Citrix Devices from the Internet

Information Security, IT Support
Canadian Centre for Cyber Security Recommends Disconnecting Vulnerable Citrix Devices from the Internet The Canadian Centre for Cyber Security has issued a security alert, advising Canadian organizations to disconnect their Citrix devices from the internet to prevent cyber-attacks. According to the Canadian Centre for Cyber Security, ongoing exploitation of the security vulnerability in Citrix devices officially designated as CVE-2019-19781 has been observed within Canada. The security vulnerability in Citrix devices allows an attacker to gain direct access to an organization’s local network from the internet. In exploiting this vulnerability, an attacker doesn’t need access to any accounts. As such, exploitation can be performed by any attacker. Citrix, for its part, said that CVE-2019-19781, if exploited, could allow an unauthenticated attacker to perform arbitrary code execution. This vulnerability is rated Critical,…
Read More
Insider Threat: Threat Within Your Organization

Insider Threat: Threat Within Your Organization

Security
Insider Threat: Threat Within Your Organization Not all cyber threats come from malicious outsiders. Cyber threats could also come within your organization. The recent data breach at the US regional banking giant SunTrust is an example of an insider threat.  According to SunTrust, a former employee of the company got hold of the contact details, including name, address, phone number and certain account balances of nearly 1.5 million of the company’s clients. "Ensuring personal information security is fundamental to our purpose as a company of advancing financial well-being," Bill Rogers, SunTrust chairman and CEO, said in a statement. "We apologize to clients who may have been affected by this. We have heightened our monitoring of accounts and increased other security measures. While we have not identified significant fraudulent activity, we…
Read More