What can the Citrix bug teach us about patch management and disclosure protocols?

What can the Citrix bug teach us about patch management and disclosure protocols?

Patching; a plaster covering software

Oliver Pinson-Roxburgh, co-founder of Bulletproof, explains what lessons should be drawn from how CVE-2019-19781's story unfolded earlier this year, and makes recommendations on how organisations reduce the risks they are exposed to.

The Citrix bug (CVE-2019-19781) was discovered in mid-December by researchers and, even though the vendor promptly released a patch, it gave criminals access to victims’ local networks, allowing them to run code via directory traversal.

Copyright Lyonsdown Limited 2020

Top Articles

Popular Trends With Ties to Bitcoin

Love it or hate it, Bitcoin is one of the biggest trends around the globe right now.

Why Bitcoin Has the Highest Market Cap?

Not only is Bitcoin the first cryptocurrency ever invented, but it has managed to remain the most successful one, even as the competition grew, namely, today, there are over 2,000…

Fraudsters leveraging the NHS brand in fresh COVID-19-related phishing scam

Organised crime groups have developed a new phishing tool by leveraging the NHS brand name to lure victims into sharing their personal data.

Related Articles