Get Permission Threat actors behind a distributed denial-of-service campaign targeted the same set of victims again after the organizations failed to pay the initial ransom, a new report by security firm Radware finds.
The report notes the victims were first hit by the unidentified group in August or September 2020. Then, when the victims failed to pay the initial ransom demand, they were sent additional ransom extortion emails in December 2020 and January, with the threat actors demanding between five and 10 bitcoins ($160,000 and $320,000).
Soon after the victims received the second set of threatening messages, the organizations were hit with a DDoS attack that exceeded 200Gbps and lasted more than nine hours without interruption, the report notes.
Get Permission
Citrix is warning its customers that attackers are taking advantage of the company s ADC products to conduct and amplify distributed denial-of-service attacks, according to a notification published by the firm.
In the warning, Citrix notes that these attacks are affecting a limited number of customers as of now. And while there is no known vulnerability at this point, the company is working on a permeant fix for its ADC products that won t be available until mid-January, according to the alert. Citrix is monitoring these events and is continuing to investigate the impact they pose on Citrix ADC, the alert says. At this time, the scope of attack is limited to a small number of customers around the world, and further, there are no known Citrix vulnerabilities associated with this event.