Interestingly, these findings closely align with a report published by Fox-IT earlier this month. In that report, it was disclosed that some 2,000 Citrix NetScaler systems had fallen victim to CVE-2023-3519.
On the day of publication (August 14), Fox-IT revealed a startling revelation: out of the compromised NetScaler servers, 1,828 had been infiltrated, despite 1,248 having received the crucial patch. The reason? A patched NetScaler might still harbor a backdoor, making it essential to conduct an IoC check on your NetScalers, regardless of when the patch was applied.
