Cyber Security Threat Summary:
CTS is a trusted provider of IT services to the legal sector in the UK. The company announced that it is investigating a cyber attack that caused a service outage. The incident impacted a portion of the services.

The security incident potentially impacted hundreds of British law firms.

“We are experiencing a service outage which has impacted a portion of the services we deliver to some of our clients. The outage was caused by a cyber-incident. We are working closely with a leading global cyber forensics firm to help us with an urgent investigation into the incident and to assist us in service restoration.” reads the update published by CTS.

“We continue to work around the clock with the assistance of third-party experts. Whilst we are confident that we will be able to restore services, we are unable to give a precise timeline for full restoration. We will continue to communicate directly with those of our clients which are impacted by the service outage, providing regular updates on the status of our work to restore services and our investigations into the incident.”

Security Officer Comments:
The company is investigating the incident with the help of a cyber forensics firm. The company plans to full restore the services, but at this time it is not able to provide a precise timeline for full restoration. The Record Media is aware of at least one law firm that was directly impacted by the CTS security breach. Estate Agent Today reported that threat actors allegedly exploited the CitrixBleed vulnerability (CVE-2023-4966). The flaw allowed attackers to gain initial access to the organization’s infrastructure. In late October, Citrix urged administrators to actively secure all NetScaler ADC and Gateway appliances. The company was aware of attacks in the wild exploiting the CVE-2023-4966 vulnerability. On October 10, Citrix published a security bulletin related to the critical vulnerability CVE-2023-4966 in Citrix NetScaler ADC/Gateway devices.

Suggested Correction(s):
Patch management fixes vulnerabilities on your software and applications that are susceptible to cyberattacks, helping your organization reduce its security risk. System uptime: Patch management ensures your software and applications are kept up-to-date and run smoothly, supporting system uptime.

Link(s):
https://www.rapid7.com/fundamentals/patch-management
https://securityaffairs.com/154807/hacking/cts-suffered-cyber-attack.html