One of the critical Citrix flaws (CVE-2020-8209), reported by Positive Technologies, could let unauthenticated attackers read arbitrary files outside the server's root folder, including conf files (often stores domain account credentials for LDAP access).
That was wild, and what was wilder was HOW Malwaretech killed it. They'd noticed that infected computers were trying to reach a weird, random, nonexistent domain, , and so they'd registered the domain and stood a server up there. 3/
[Video] #WindowsSecurity Tip: How to secure your domain name services #DNS ) – Watch as @SBSDiva shows you how to protect your websites at the server and workstation. ?️?️the video -- #2FA #WebsiteSecurity #WebSecurity #BrowserSecurity