Sensitive data leakage in Citrix

Citrix has reported that on March 6, 2019, the FBI contacted them to warn them that they had reason to believe that international cybercriminals had accessed their internal network.

The security breach, caused by Iranian cyber-criminals, has made it possible to reveal 6 TB of sensitive information from different customers. The FBI considers that a technique known as password spraying has been used, a type of brute force attack in which a small number of commonly used passwords are checked against multiple users.

Citrix is committed to updating customers with more information as the investigation progresses, and to continuing to work with the relevant authorities.