Admin IP address: 22.214.171.124, AS196740, Ukraine
Really piling on the confidence here.
Citrix Data Breach – Next is what to do next
"resecurity" kiev ukraine from newsbeezer.com
19 hours ago · KIEV, UKRAINE – 2019/01/ 20: Citrix Systems software ... According to Security Company Resecurity, the attacks were ...
Here's the article's top image sub-text:
Citrix was hit by hackers in attacks that may have exposed large amounts of customer data. KIEV, UKRAINE – 2019/01/20: Citrix Systems software Company logo displayed on a smartphone. (Photo by Igor Golovniov / SOPA Images / LightRocket on Getty Images) Getty
The image is hosted by Forbes:
Why newsbreezer has an article dated an hour earlier in a Google search than the Forbes article which is hosting the image on both sites, and why it's coincidentally sub-texted with KIEV, UKRAINE, I can't explain...
Regardless, it would be irresponsible to trust their attribution claim, especially when no evidence has been presented.
Why The Citrix Breach Matters -- And What To Do Next
"resecurity" kiev ukraine from www.forbes.com
18 hours ago · KIEV, UKRAINE - 2019/01/20: Citrix Systems Software company logo seen ... According to security firm Resecurity, the attacks were perpetrated by ...
Which seems to belong to a russian guy:
Must be a russian speaking Iranian ;-)
This is either an insider joke or a jump back to 2004.
That is a page that I doubt the author would have wanted to be public, and is not linked to from the home page or its descendants. Wasn't that the case against weev?
(IMO, if it is public, it should be legal to post to it, but whatever.)
As you can see, the link is gone now.