TT-CSIRT 429.10.07.24: Citrix Releases Security Updates for Multiple Products

  • Home
  • Archive for category "Advisories"
TT-CSIRT 429.10.07.24: Citrix Releases Security Updates for Multiple Products
By

Citrix has announced significant security updates to address vulnerabilities across multiple products. Administrators should promptly review and implement the following updates: NetScaler ADC and NetScaler Gateway: CVE-2024-5491, CVE-2024-5492 NetScaler Console, Agent, and SVM: CVE-2024-6235, CVE-2024-6236 Citrix Workspace app for HTML5: CVE-2024-6148, CVE-2024-6149 Citrix Provisioning: CVE-2024-6150 Windows Virtual Delivery Agent for CVAD and Citrix DaaS: CVE-2024-6151 […]

Read More
TT-CSIRT-408.31.10.22: Phishing Alert
By

The Trinidad and Tobago Cyber Security Incident Response Team (TT-CSIRT) is aware of a phishing email originating from the Ministry of Foreign and CARICOM Affairs’ domain “foreign.gov.tt”. In this respect we are advising all persons not to open any emails received from the Ministry of Foreign and CARICOM Affairs with the following details: Subject: “Re: […]

Read More
TTCSIRT-406.30.09.22: Critical Microsoft Exchange 0-Day Vulnerability Actively Exploited
By

Critical Microsoft Exchange 0-Day Vulnerability Actively Exploited Description The two vulnerabilities for on-premise Microsoft Exchange have been discovered and are now being tracked as a Server-Side Request Forgery vulnerability, CVE-2022-41040, and a remote code execution vulnerability, CVE-2022-41082. The two vulnerabilities are being exploited together to remotely trigger arbitrary code execution which essentially allows threat actors […]

Read More
Increased Cyber Activity in Trinidad and Tobago and the Region
Increased Cyber Activity in Trinidad and Tobago and the Region
By

The Trinidad and Tobago Cyber Security Incident Response Team (TT-CSIRT) has observed a sharp increase in malicious cyber activity targeting local and regional entities over the past two (2) months. The TT-CSIRT is urging all entities (public and private) to adopt a heightened state of awareness and be guided by the following: Top Threats to […]

Read More
THREAT ALERT: WhatsApp Account Takeover Attack
By

WhatsApp Account Takeover Attack Advice TT-CSIRT urges the public to continue reporting these cyber-crime incidents to TTPS Cyber-crime and Social Media Unit via the information at the following link: https://ttcsirt.gov.tt/ttps-cyber-crime-unit/ About stolen WhatsApp accounts You should never share your WhatsApp SMS verification code with others, not even friends or family. If you’re tricked into sharing […]

Read More
TTCSIRT-THREAT ALERT: Supplemental Guidance for Emergency Directive on SolarWinds Orion Compromise
By

Please be advised, for situational awareness, the Cybersecurity and Infrastructure Security Agency (CISA) has released Emergency Directive (ED) 21-01 – Mitigate SolarWinds Orion Code Compromise – Supplemental Guidance Version 2, which provides additional guidance that supplements Emergency Directive (ED) 21-01 and Supplemental Guidance v1 issued on December 18, 2020. Can be accessed here: https://cyber.dhs.gov/ed/21-01/#supplemental-guidance. This guidance requires […]

Read More
TTCSIRT-THREAT ALERT: Russian State-Sponsored Malicious Cyber Actors Exploiting CVE-2020-4006
By

Please be advised, Russian state-sponsored actors exploiting CVE-2020-4006, a command-injection vulnerability in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. The actors were found exploiting this vulnerability to access protected data on affected systems via a Command Injection Vulnerability in the administrative configurator. VMware has evaluated this issue to be of ‘Important‘ […]

Read More

Quick Navigation

Partner Agencies

Subscribe to Stay Updated!

Subscribe

Follow on social media:

Facebook-f X-twitter Linkedin-in Instagram