Citrix released the final fix for the actively exploited CVE-2019-19781 vulnerability, needed to secure all vulnerable Citrix Application Delivery Controller (ADC), Citrix Gateway, and Citrix SD-WAN WANOP appliances. The fixes are available to all customers “regardless of whether they have an active maintenance contract with Citrix”” and can be downloaded for all Citrix appliances. FireEye researchers recently found that an unknown threat actor is actively scanning for and patching Citrix ADC exploitation attempts against. The actor may be quietly collecting access to NetScaler devices for a subsequent campaign.”
Source: https://www.bleepingcomputer.com/news/security/citrix-releases-final-patch-as-ransomware-attacks-ramp-up/

