Hackers Used Snappybee Malware and Citrix Flaw to Breach European Telecom Network

A European telecommunications organization is said to have been targeted by a threat actor that aligns with a China-nexus cyber espionage group known as Salt Typhoon. The organization, per Darktrace, was targeted in the first week of July 2025, with the attackers exploiting a Citrix NetScaler...

EUVD-2012-6169

Malware in sbrugna...

EUVD-2021-10057

Malware in sbrugna...

EUVD-2023-28508

Malicious code in bioql PyPI...

EUVD-2023-28501

Malicious code in bioql PyPI...

Linux VDA login fail

The newly installed LVDA encountered a login failure. When launching the virtual desktop, the Linux login screen appears, but even after manually entering the correct username and password, the system fails to authenticate and proceed to the desktop environment...

FIDO2 Authentication Does Not Work With Webpages Opened Using Microsoft Edge

Users are not able to Authenticate to a website that requires FIDO2 Authentication using a Yubikey when using Edge on VDA Devices. The users are constantly prompted to select a Smartcard device. The same users are able to Authenticate onto the same website using Chrome or Firefox inside the same...

CVE-2023-24490

Users with only access to launch VDA applications can launch an unauthorized desktop...

CVE-2020-8269

An unprivileged Windows user on the VDA can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hotfix CTX285344 and 7.6 LTSR CU9...

Enabling Core Dump Collection with ABRT on RHEL/CentOS

This KB outlines the steps to enable core dump collection for Linux VDA modulesctxgfx etc using the ABRT Automatic Bug Reporting Tool framework on RHEL/CentOS systems...

After installing Single-session OS VDA, Windows Hello for Business cannot be disabled via Intune.

After installing Single-session OS VDA 2209 or 2203 LTSR CU2 or later, Windows Hello for Business can no longer be disabled via Microsoft Intune...

LVDA is getting unregistered after the upgrade to 2402 LTSR

Unable to launch the Linux Published desktop with below error VDA is going to unregister state based on the VDA side logs and CTXVDA service is not starting...

Linux : Session closes immediately while getting gray screen for 10 seconds

When launch connection on linux vda from cloud, for a user the connection closes after a grey windows on vda user home folder is not created but other users may login fine...

CWA 2402 - Client attempts to connect to VDA on SSL but VDA is not SSL enabled

Unable to launch applications internally, and the error is - cannot connect to the . Ports 1494 and 2598 are open from Client to VDA. Client attempts to connect to the VDA over UDP/TCP 443...

CWAL 2311 | Failed to register YUBI key on VDA desktop

Failed to register Yubi Key in workspace app for Linux.http://webauthn.io/webauthn.io registration works and onlyhttps://webauthn.me/debuggerwebauthn.me site registration fail...

Black area's when launching Horizon app on VDA 2402 CU1

After upgrading our VDA to 2402 cu1 we are presented with black artifacts on launch of Horizon app...

Enabling EDT Lost Tolerant Mode using Linux as client.

How to enable EDT Lost Tolerant Mode in the latest VDAs versions when using Linux as client, all requirements needed...

CVAD LVDA - How to update list of Controllers on a Linux VDA

Instructions to update the list of Controllers on a Linux VDA...

Citrix Virtual Apps and Desktops 2407 : Sophos Endpoint Agent gets loaded into ICA user session

Published app sessions are getting loaded with Sophos Endpoint Agent. This is seen under Workspace app Connection Center. Sophos Endpoint agent is getting loaded into all the Citrix ICA sessions. Citrix Workspace app Connection Center shows the "Sophos Endpoint Agent - Notification Icon". Sophos...

Citrix policies filtered by Client IP address not applying after 2411

Citrix policies are applied using as filter IP address of the client The IP addresses defined are the ones of the endpoints who has Citrix Workspace App installed The policy worked correctly before upgrading VDA to version 2411 However, when the VDA is upgraded to version 2411 or newer, the...