Comprehensive software reviews to make better IT decisions
Security Lessons From Recent Citrix Data Breach
Citrix claims that, “there is no indication that the security of any Citrix product or service was compromised.” However, it has yet to determine (and/or publicly disclose) the exact scope and type of information that was breached. Citrix has initiated a forensic investigation and is engaging external consultants for assistance.
Resecurity speculates that this attack began over Christmas holidays. According to Citrix’s blog post, the FBI notified Citrix about the ongoing compromise on Wednesday, March 6, 2019. For further updates on this event, stay tuned to Citrix’s blog.
Commonly amongst data breaches, the end user is the weakest link. Two-factor authentication is not enough to protect against weak passwords. As a means to circumvent the problem, you should consider doing the following:
- Enact additional layers of data protection where it makes sense.
- Develop a plan to respond should your data be compromised in an incident like this.
- Implement longer password requirements.
- Supplement passwords with multi-factor authentication.
- Enact user training for cybersecurity.
Incidents like this are the new normal – settle in.
Want to Know More?
Azure-based Windows Virtual Desktops are Microsoft’s next generation of VDI licensing options. Does the cost justify the benefit?
AWS has provided valuable new features for managing container networking. But this tasty secret sauce may prove addictive.