NSA warns of Chinese state hackers targeting Citrix

The National Security Agency sent companies a warning notice Tuesday that Chinese state-linked cyberspies are targeting the multinational cloud-computing firm Citrix.

The electronic spy agency said in its notice that a group known as Advanced Persistent Threat 5, or APT5, a security designation for a Chinese state-backed hacking group known to target telecommunications companies, is operating against a specific Citrix software called application delivery controllers (ADCs).

The targeting of Citrix ADCs can “facilitate illegitimate access to targeted organizations by bypassing normal authentication controls,” the agency said.

NSA, along with other security agencies, produced “threat hunting guidance” for companies and organizations using Citrix to spot cyberattacks from the group.

Citrix products…