FINRA Cyber Alert – High-Risk Vulnerabilities Related to Citrix NetScaler Products

IMPACT: Firms using Citrix NetScaler in support of internet-based applications

Firms should review this information with any vendors who provide information technology services to the firm.

FINRA is highlighting recently reported vulnerabilities that impact Citrix NetScaler services including NetScaler ADC and NetScaler Gateway. Threat actors can exploit these vulnerabilities to exfiltrate sensitive information and to infect data and systems with ransomware. These Citrix services are typically used in support of internet-based application systems, to balance and manage incoming requests, and to enhance security and resiliency. 

FINRA member firms that maintain internet-based websites to support account access or trading services should immediately evaluate their exposure to these vulnerabilities. The following sources may be helpful when conducting an assessment:

1. Information provided by Citrix such as their recently published bulletin that describes the required remediation steps. 
2. Cybersecurity and Information Security Agency (CISA) guidance related to the vulnerabilities. 
3. National Institute of Standards and Technology (NIST) database, known as the National Vulnerability Database (NVD), description of CVE-2023-4966 and CVE-2023-4967.

If a member firm is impacted by these vulnerabilities key findings should be reported to a local FBI Field Office or CISA at cisa.gov/report.

Questions related to this Alert or other cybersecurity-related topics can be emailed to the CAU. 

Note: If you would like to add or change who receives this email, please update your firm’s Chief Information Security Officer (CISO) and/or Chief Compliance Officer (CCO) contacts in FINRA Gateway.