Recent searches
Search options
DP World cyber attack thread. It’s ransomware, entry point is Citrix Netscaler #CitrixBleed. https://www.theage.com.au/national/ports-to-remain-closed-as-afp-investigates-cybersecurity-breach-20231111-p5ej9i.html
Here’s their Citrix Netscaler, on Monday it was still unpatched. https://beta.shodan.io/host/202.8.92.29
DP World’s Citrix Netscaler is now offline.
Mastodon to mainstream press in effect - Sydney Morning Herald have found out the Netscaler element in DP World ransomware via my toot being repeated.
Australian government has declared it a “nationally significant incident”.
@GossiTheDog I want to know what “DP World” is but I am not putting that into a search bar 
@GossiTheDog Their OWA is also offline (duh)
I can't be arsed to check whether the two RDP things in UAE are still connectable. The [old?] Sophos & Sonicwall boxes are still there though.
Wouldn't surprise me if the ransomware people are still connected & poking around.
(DPW is apparently Dubai based)
@GossiTheDog didn’t ChatGPT report you as suing yourself? lol
@GossiTheDog
Source: Troy Hunt, founder of Have I Been Pwned.
https://www.theage.com.au/business/companies/cyberattack-threatens-to-spark-christmas-goods-shortage-20231112-p5ejcm.html
If only DP World’s IT security people had been paying attention to ... almost anything, really, or perhaps their management processes prevented timely patching.
@GossiTheDog close to home. Aussies have it bad with shipping delays without this crap 