Netscaler News Articles
Recent news articles refferecing the vendors vulnerabilities.
‘Advanced’ hacker seen exploiting Cisco, Citrix zero-days
The hackers notably used custom malware and were exploiting CVE-2025-5777 — now known colloquially as “Citrix Bleed Two” — before it was disclosed publicly in July.
The Hacker NewsCVE-2025-12101ThreatsDay Bulletin: Cisco 0-Days, AI Bug Bounties, Crypto Heists, State-Linked Leaks and 20 More Stories
Global cyber roundup: new AI bug bounties, malware threats, GDPR backlash, Cisco zero-days, data leaks, and rising attacks on key infrastructure.
The Cyber ExpressAmazon Uncovers CVE-2025-20337 & CVE-2025-5777 Exploits
Amazon reports APTs exploiting CVE-2025-20337 and CVE-2025-5777 zero-day flaws in Cisco and Citrix systems.
watchTowr LabsCVE-2025-12101Is It CitrixBleed4? Well, No. Is It Good? Also, No. (Citrix NetScaler Memory Leak & RXSS CVE-2025-12101)
There’s an elegance to vulnerability research that feels almost poetic - the quiet dance between chaos and control. It’s the art of peeling back the layers of complexity, not to destroy but to understand; to trace the fragile threads that hold systems together and see where they might
theregister.comCVE-2025-5777Amazon: Cisco, Citrix 0-days indicate 'advanced' attacker
An "advanced" attacker exploited CitrixBleed 2 and a max-severity Cisco Identity Services Engine (ISE) bug as zero-days to deploy custom malware, according to Amazon Chief Information Security Officer CJ...
The Hacker NewsCVE-2025-5777Amazon Uncovers Attacks Exploited Cisco ISE and Citrix NetScaler as Zero-Day Flaws
Amazon reports dual zero-day exploits in Cisco ISE and Citrix ADC used to deploy custom malware.
Amazon Web Services (AWS)CVE-2025-5777Amazon discovers APT exploiting Cisco and Citrix zero-days | Amazon Web Services
The Amazon threat intelligence team has identified an advanced threat actor exploiting previously undisclosed zero-day vulnerabilities in Cisco Identity Service Engine (ISE) and Citrix systems. The campaign used custom malware and demonstrated access to multiple undisclosed vulnerabilities. This dis...
Red Hot CyberCVE-2025-12101NetScaler ADC and Gateway Vulnerable: Urgent Updates to Prevent XSS Attacks
NetScaler has issued a security bulletin for an XSS vulnerability affecting its NetScaler ADC and NetScaler Gateway products. Urgent updates are recommended.
Hackers use new HexStrike-AI tool to rapidly exploit n-day flaws
Hackers are increasingly using a new AI-powered offensive security framework called HexStrike-AI in real attacks to exploit newly disclosed n-day flaws.
Over 28,000 Citrix devices vulnerable to new exploited RCE flaw
More than 28,200 Citrix instances are vulnerable to a critical remote code execution vulnerability tracked as CVE-2025-7775 that is already being exploited in the wild.
Citrix fixes critical NetScaler RCE flaw exploited in zero-day attacks
Citrix fixed three NetScaler ADC and NetScaler Gateway flaws today, including a critical remote code execution flaw tracked as CVE-2025-7775 that was actively exploited in attacks as a zero-day vulnerability.
Citrix Under Active Attack Again with Another Zero-Day
The flaw is one of three the company disclosed affecting its NetScaler ADC and NetScaler Gateway technologies.
The Hacker NewsCVE-2025-7775Citrix Patches Three NetScaler Flaws, Confirms Active Exploitation of CVE-2025-7775
Citrix patches CVE-2025-7775 exploited in NetScaler ADC; fixes three flaws with no workarounds.
Pennsylvania attorney general's email, site down after cyberattack
The Office of the Pennsylvania Attorney General has announced that a recent cyberattack has taken down its systems, including landline phone lines and email accounts.
Over 3,000 NetScaler devices left unpatched against CitrixBleed 2 bug
Over 3,300 Citrix NetScaler devices remain unpatched against a critical vulnerability that allows attackers to bypass authentication by hijacking user sessions, nearly two months after patches were released.
The Hacker NewsCVE-2025-6543Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors
Dutch NCSC warns of CVE-2025-6543 Citrix attacks on critical organizations, urging urgent patches to prevent further breaches.
Netherlands: Citrix Netscaler flaw CVE-2025-6543 exploited to breach orgs
The Netherlands' National Cyber Security Centre (NCSC) is warning that a critical Citrix NetScaler vulnerability tracked as CVE-2025-6543 was exploited to breach
CYFIRMACVE-2025-5777CVE-2025-5777 – Pre-Auth Memory Leak in Citrix NetScaler (CitrixBleed 2) - CYFIRMA
Published On : 2025-07-18 EXECUTIVE SUMMARY CVE‑2025‑5777 is a critical information disclosure vulnerability in Citrix NetScaler ADC and Gateway appliances, caused by unsafe memory handling in the...
Arctic WolfCVE-2025-5777Updates on Actively Exploited Information Disclosure Vulnerability “Citrix Bleed 2” in Citrix NetScaler ADC and Gateway I Arctic Wolf
In late June 2025, Arctic Wolf issued a security bulletin addressing a critical out-of-bounds read vulnerability in Citrix NetScaler ADC and Gateway that Citrix disclosed, tracked as CVE-2025-5777.
Citrix Bleed 2 exploited weeks before PoCs as Citrix denied attacks
A critical Citrix NetScaler vulnerability, tracked as CVE-2025-5777 and dubbed
CyberSecurityNewsCVE-2025-5777Hackers Started Exploiting CitrixBleed 2 Vulnerability Before Public PoC Disclosure
Researchers detected an active exploitation of CVE-2025-5777, dubbed CitrixBleed 2, nearly two weeks before a public proof-of-concept surfaced.
Cyber PressCVE-2025-5777Hackers Exploited CitrixBleed 2 Vulnerability Before Public PoC Release
This memory overread vulnerability in Citrix NetScaler appliances demonstrates how sophisticated attackers can identify
GBHackers NewsCVE-2025-5777Hackers Actively Exploited CitrixBleed 2 Flaw Ahead of PoC Disclosure
Researchers have discovered that threat actors began exploiting CitrixBleed 2 vulnerability nearly two weeks before a public proof-of-concept was released.
CISA (.gov)CVE-2025-5777CISA Adds One Known Exploited Vulnerability to Catalog | CISA
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-5777(link is external) Citrix NetScaler ADC and Gateway...
CyberScoopCVE-2025-5777CitrixBleed 2 beckons sweeping alarm as exploits spread across the globe
The number of Citrix customers impacted by CVE-2025-5777 remains unknown, but researchers have already observed more than 11.5 million attack attempts, targeting thousands of sites.