Credential Harvesting Campaign Targets Unpatched NetScaler Instances

The vulnerability, known as CVE-2023-3519, was disclosed in July but had been exploited since June. By mid-August, threat actors had backdoored around 2,000 NetScaler instances.