News

CISA warns hackers are actively exploiting critical ‘Citrix Bleed 2’ security flaw
The U.S. cybersecurity agency gave federal agencies just one day to patch a security bug in Citrix Netscaler, which can be ...
CISA tags Citrix Bleed 2 as exploited, gives agencies a day to patch
The U.S. Cybersecurity & Infrastructure Security Agency has confirmed active exploitation of the CitrixBleed 2 vulnerability ...
CISA warns hackers are actively exploiting critical CitrixBleed 2
CitrixBleed 2 was discovered in mid-June 2025 But there were quickly reports of abuse in the wild CISA is now urging FCEB ...
SecurityWeek3d
CitrixBleed 2 Flaw Poses Unacceptable Risk: CISA
CISA considers the recently disclosed CitrixBleed 2 vulnerability an unacceptable risk and has added it to the KEV catalog.
Now everybody but Citrix agrees that CitrixBleed 2 is under exploit
Security maven Kevin Beaumont dubbed the new vulnerability "CitrixBleed 2" because it closely resembled an earlier critical ...
ResponseSource Press Release Wire7h
Solace Cyber Urges Immediate Action on New ‘CitrixBleed 2’ Vulnerability Threatening Businesses Worldwide
Solace Cyber is issuing an urgent warning to businesses and IT leaders following the discovery of a critical vulnerability ...
CRN6d
‘Critical’ Citrix NetScaler Vulnerability Now Seeing Exploitation: CISA
CISA ordered Federal Civilian Executive Branch agencies to implement fixes for a critical-severity vulnerability affecting ...
The Hacker News5d
CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises
CISA added Citrix NetScaler's CVE-2025-5777 to its KEV catalog as active exploits emerge worldwide. Immediate patching ...
Researchers, CISA confirm active exploitation of critical Citrix Netscaler flaw
Critics have faulted Citrix for not updating its guidance in recent days, even as concerns grow about a resumption of the ...
The Hacker News9d
CISA Adds Four Critical Vulnerabilities to KEV Catalog Due to Active Exploitation
CISA adds four critical vulnerabilities to its KEV list, with active exploitation confirmed. Federal agencies must update by ...
SecurityWeek16d
Thousands of Citrix NetScaler Instances Unpatched Against Exploited Vulnerabilities
Many Citrix NetScaler systems are exposed to attacks exploiting the vulnerabilities tracked as CVE-2025-5777 and ...
Nextgov3mon
CISA extends MITRE-backed CVE contract hours before its lapse
“Last night, CISA executed the option period on the contract to ensure there will be no lapse in critical CVE services,” an agency spokesperson said.