The company did not disclose details of the attack, it only announced to have detected an anomalous activity on its systems.
“Earlier today, our teams learned of
“At this time, we strongly believe that the incident was the result of a ransomware attack and do not have any evidence that customer or employee data was accessed or exfiltrated, nor do we believe our clients’ networks were impacted.”
The company immediately started the activities to resolve the problem and launched an internal investigation.
“Following Friday’s incident, and detection of potentially anomalous activity in our systems, we have successfully contained the threat. At this time, we do not have any evidence that customer or employee data was accessed or exfiltrated.” reads an update provided today. “Remediation work is continuing around the clock, and Finastra aims to restart production in a controlled manner as soon as is safe to do so. We will keep you fully informed as we progress.”
Experts from cyber-security firm Bad Packets speculate attackers might have exploited the CVE-2019-11510 vulnerability to compromise
Bad Packets revealed that at least until January 11, 2020, four Citrix vulnerable servers were exposed online.