2025年的一次网络攻击利用了Citrix的缺陷,在三个州违反了联邦应急管理局和CBP系统,导致数据失窃和大规模开火,尽管声称没有收集敏感数据。 A 2025 cyberattack exploited a Citrix flaw, breaching FEMA and CBP systems in three states, leading to data theft and mass firings despite claims no sensitive data was taken.

2025年夏季发生的网络安全违规事件利用了Citrix软件在新墨西哥州、得克萨斯州和路易斯安那州各地对FEMA和CBP网络进行破坏的脆弱性,导致雇员数据在数周内失窃。 A summer 2025 cybersecurity breach exploited a Citrix software vulnerability to compromise FEMA and CBP networks across New Mexico, Texas, and Louisiana, resulting in the theft of employee data over several weeks. 尽管国土安全部秘书Kristi Noem声称,没有从国土安全部系统中提取敏感数据,但联邦紧急事务管理局的内部评估证实,违规事件影响到这两个机构。 Despite DHS Secretary Kristi Noem’s claim that no sensitive data was extracted from DHS systems, an internal FEMA assessment confirmed the breach affected both agencies. 这一事件引发了近两个月的补救努力,并导致24名联邦应急管理局信息技术工作人员,包括高级主管,因据称的安全失误而被解雇。 The incident prompted a nearly two-month remediation effort and the firing of 24 FEMA IT staff, including top executives, over alleged security failures. 一些前官员对开除提出质疑,指出被解雇的雇员受到尊重。 Some former officials questioned the dismissals, noting the fired employees were respected. 攻击者的身份仍然不明,而且不清楚这一违反行为是否与针对联邦机构的更广泛的间谍活动有关。 The attacker remains unidentified, and it is unclear if the breach is linked to a broader espionage campaign targeting federal agencies.