The Dutch National Cyber Security Centre (NCSC-NL) warns of active cyber attacks exploiting the critical CVE-2025-6543 vulnerability in Citrix NetScaler ADC products. The attackers have been using zero-day exploits since early May 2025, deploying web shells and compromising organizations. #CVE2025-6543 #CitrixNetScaler
Keypoints
- The NCSC-NL detected exploitation of a critical Citrix vulnerability, CVE-2025-6543, in the Netherlands.
- The vulnerability impacts NetScaler ADC and Gateway devices, causing DoS and control flow issues.
- Attacks began in early May 2025, with threat actors actively erasing traces of their presence.
- Malicious web shells were found on compromised Citrix devices, granting remote access to attackers.
- Organizations are urged to update to the latest patches and use specific commands to cut off active sessions.
Read More: https://thehackernews.com/2025/08/dutch-ncsc-confirms-active-exploitation.html