>>5605995(lb)

Hmmmm (cant seem to stop…)

Looking at Citrix they have a ton of cool technology. Little all over the place. But to sum it up its all about access technologies. Remote access with easy access. One port and you have full remote desktop. Protocol is easily encapsulated in other protocols so it can go undetected. Security products and network management are some of their other products but GoToMeeting was one of their big purchases that put them more in the public eye.

Founder came from IBM Main Frame days. Originally built technology on OS2 (for the OGs)

Lotta technology…..seem like their development/research or customer support networks would be the target. Corporate Development and research look like they are both in ft lauderdale.

Its got to be a bad day when you are the CSO of a technology company and you get a call from the FBI you were hacked.

>>5606090

Not sure how they are related….GotoMeeting is under LogMeIn. Separate company owned by Citrix. Citrix CEO sits on the board of LogMeIn.

Under this unbrella its all about remote access via thin clients.

Some business documents were taken….CSIO says. KEK

If the fbi needs to tell you that your company was pwned do you think they are going to have any clue as to how long, what they did in their network. Kek

https://www.darkreading.com/application-security/citrix-hacked-by-international-cybercriminals/d/d-id/1334122

>>5606145

Is it that time already?

Comfy Night Shift

Ahhh…. here we go on the Citrix hack

Interesting….FBI had to inform them they were hacked

WH comms hacked? Now that they were shut off from other tech they were looking to compromise the technology contractor for GOV comms.

Interdasting… someone gettin desperate?

Reported by NBCnews…

Iranian-backed hackers have stolen vast amounts of data from a major software company that handles sensitive computer projects for the White House communications agency, the U.S. military, the FBI and many American corporations, a cybersecurity firm told NBC News.

Citrix Systems Inc. came under attack twice, once in December and again Monday, according to Resecurity, which notified the firm and law enforcement authorities.

Employing brute force attacks that guess passwords, the assault was carried out by the Iranian-linked hacking group known as Iridium, which was also behind recent cyberattacks against numerous government agencies, oil and gas companies and other targets, Charles Yoo, Resecurity's president, said.

The hackers extracted at least six terabytes of data and possibly up to 10 terabytes in the assault on Citrix, Yoo said. The attackers gained access to Citrix through several compromised employee accounts, he said.

"So it's a pretty deep intrusion, with multiple employee compromises and remote access to internal resources," he said.

https://www.nbcnews.com/politics/national-security/iranian-backed-hackers-stole-data-major-u-s-government-contractor-n980986

>>5606385

Compromised employee accounts. Typical hacking technique. If you can't hack the target. Hack their buddy. Impersonate the user and you are in…with legit credentials.

Its pretty easy to target employees with all the back doors on our phones/computers these days.

>>5606296

Citrix hack dig continued…..

Reported by NBC (it is what it is)

"….reason to believe that Iridium broke its way into Citrix's network about 10 years ago, and has been lurking inside the company's system ever since."

The FBI declined comment.

Resecurity informed Citrix executives of the first cyberattack in a Dec. 28 email, Yoo said.

An analysis of the cyberattack indicated the hackers were focused in particular on FBI-related projects, NASA and aerospace contracts and work with Saudi Aramco, Saudi Arabia's state oil company, according to Yoo.

Yoo said his firm, which has been tracking the Iranian-linked group for years, has reason to believe that Iridium broke its way into Citrix's network about 10 years ago, and has been lurking inside the company's system ever since.

https://www.nbcnews.com/politics/national-security/iranian-backed-hackers-stole-data-major-u-s-government-contractor-n980986

>>5606509

It would appear that (((they))) were targeting Citrix because they manage the network and security infrastructure.

>An analysis of the cyberattack indicated the hackers were focused in particular on FBI-related projects, NASA and aerospace contracts and work with Saudi Aramco, Saudi Arabia's state oil company, according to Yoo.

>>5606512

>>5606090

Correction HQ moved to Santa clara CA.

Seems like they are a little too sure it was Iran.

They got powned bigly

"

Security

Iranian-backed hackers ransacked Citrix, swiped 6TB+ of emails, docs, secrets, says cyber-biz

Remote-desktop giant 'among more than 200 govt agencies, oil, gas, tech corps' hit by gang

By Shaun Nichols in San Francisco 8 Mar 2019 at 19:11

57 Reg comments SHARE ▼

Flags of US and Iran

Updated Citrix today warned its customers that foreign hackers romped through its internal company network and stole corporate secrets.

The enterprise software giant – which services businesses, the American military, and various US government agencies – said it was told by the FBI on Wednesday that miscreants had accessed Citrix's IT systems and exfiltrated files."

>Iranian-backed hackers ransacked Citrix, swiped 6TB+ of emails, docs, secrets, says cyber-biz

Remote-desktop giant 'among more than 200 govt agencies, oil, gas, tech corps' hit by gang

https://www.theregister.co.uk/2019/03/08/citrix_hacked_data_stolen/