A ransomware attack, believed to be associated with a critical vulnerability in Citrix networking products, has caused widespread outages at numerous credit unions in the United States. The vulnerability, identified as CVE-2023-4966 and also known as CitrixBleed, was highlighted by cybersecurity researcher Kevin Beaumont.
Beaumont noted that Ongoing Operations, a key service provider for these credit unions, had its two Netscaler devices, which are Citrix Netscaler application delivery controllers, go offline as a result of the attack. This disruption has significantly impacted operations, affecting millions of Americans. Beaumont’s findings revealed that the last modification to Ongoing Operations’ Citrix Netscaler devices was on May 12.
This vulnerability has also been linked to recent ransomware attacks on major corporations like Boeing and Fidelity National Financial. In response to these attacks, the Cybersecurity and Infrastructure Security Agency (CISA) in early November urged organizations to apply available patches, actively search for malicious activity, and report any findings.
The National Credit Union Administration (NCUA) has informed relevant federal entities, including the Treasury Department, FBI, and CISA, about the incident. It reassured members that deposits at federally insured credit unions are covered by the National Credit Union Share Insurance Fund up to $250,000.
This year has seen an uptick in ransomware attacks targeting credit unions, including those affected by attacks against MOVEit file-transfer service environments in late May. The NCUA has established a framework to evaluate and respond to such cybersecurity incidents. Following a mandate requiring federally insured credit unions to report cybersecurity incidents within 72 hours, the NCUA received 146 incident reports in the first month, as stated by NCUA Chair Todd Harper in October.
Your source for supply chain report news updates: The Supply Chain Report. For international trade insights and tools, head to ADAMftd.com.
#RansomwareAttack #CitrixBleed #CreditUnionCybersecurity #CVE20234966 #OngoingOperations #CitrixNetscaler #BoeingCyberAttack #FidelityNationalFinancial #CISAAlert #NCUA #CybersecurityResilience #KevinBeaumont #CyberThreatProtection #DataProtection #TreasuryDepartment #FBI #CreditUnionSecurity #MOVEitVulnerability #CyberIncidentResponse #NCUAFunds
