A free tool for detecting Shitrix-related compromises on your business network

Graham Cluley
Graham Cluley
@
@[email protected]
@gcluley

A free tool for detecting Shitrix-related compromises on your business network

Citrix hasn’t quite finished releasing patches for all of its products which are vulnerable to the so-called Shitrix vulnerability that has been actively exploited by hackers in the last couple of weeks, but it’s good to see them do something for those businesses patiently waiting for a fix.

In a press release and blog post published today, Citrix announced that it had teamed up with security researchers at FireEye to produce a free forensic tool which can help provide “a rapid assessment of potential Indicators of Compromise based on known attacks and exploits.”

Of course, when patches do become available from Citrix (the company says they should all be out by January 27th) they should be applied at the earliest opportunity, and in the meantime businesses would be wise to apply the recommended mitigation steps.

Sign up to our free newsletter.
Security news, advice, and tips.

The tool, which goes by the less-than-catchy but definitely technically accurate name of “Indicator of Compromise Scanner for CVE-2019-19781”, has been made available in the GitHub repositories of both Citrix and FireEye.


Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.