Initial Access - Geek Feed

Citrix shares mitigations for ongoing Netscaler password spray attacks

December 15, 2024December 15, 2024 geekfeed0Tagged Brute Force, Citrix, credentials, Initial Access, Netscaler, Password Spray

Citrix Netscaler is the latest target in widespread password spray attacks targeting edge networking devices and cloud platforms this year to breach corporate networks. In March, Cisco reported that threat actors were conducting password spray attacks on the Cisco VPN devices. In some cases, these attacks caused a denial-of-service state, allowing the company to find a DDoS vulnerability […]

4 mins read

North Korean govt hackers linked to Play ransomware attack

October 31, 2024October 31, 2024 geekfeed0Tagged Andariel, Initial Access, Initial Access Broker, North Korea, PLAY, ransomware, State-Sponsored

The North Korean state-sponsored hacking group tracked as ‘Andariel’ has been linked to the Play ransomware operation, using the RaaS to work behind the scenes and evade sanctions. A report from Palo Alto Networks and its Unit 42 researchers claims that Andariel might be either an affiliate of Play or acting as an initial access broker […]

4 mins read