Systems Engineering is aware of the vulnerabilities recently found in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway). Exploits on unmitigated appliances have been observed.
Systems Engineering

Recent Posts
SECURITY ALERT: FortiOS & FortiProxy heap-based buffer overflow vulnerability: FG-IR-23-097
Systems Engineering is aware of the following vulnerability in FortiOS.
CVE-2023-27997/ FG-IR-23-097: FortiOS & FortiProxy - Heap buffer overflow in Secure Socket Layer Virtual Private Network (SSL-VPN) pre-authentication.
FortiGuard has rated this vulnerability as a Critical risk.
New England-based Firm Recognized by Security Operations Leader
PORTLAND, ME, June 7, 2023 – Systems Engineering has been named Arctic Wolf's MSP Rookie Partner of the Year for 2023.This honor recognizes the company's commitment to improving its customers' cybersecurity posture through a strategic partnership with Arctic Wolf that focuses on joint business growth and planning, engagement and training, demand generation, and executive and security practice alignment.
Apple has released a critical security update to address zero-day vulnerabilities in both iPhone and iPad, as well as Mac devices. If you have not already installed the most recent version to your Apple devices (16.4.1 for the iPhone and iPad, and Ventura 13.3.1 for Mac computers), please complete this update as soon as possible.
Beginning May 8, 2023, Microsoft will implement a security upgrade within its Microsoft Authenticator application for multifactor authentication (MFA). Current users of "push notifications" within the authenticator app (our recommended method) will move to a number-matching procedure for improved sign-in security.
The rate of technology change is accelerating, along with the number of attack surfaces within a company environment. At no time was the acceleration more evident than during the height of the pandemic. Many companies had to quickly adapt and invest in technology to simply keep operating.
SECURITY ALERT: Microsoft has released information on a recent vulnerability in the Outlook client on Windows devices CVE-2023-23397
Systems Engineering is aware of the following vulnerability in Microsoft Outlook, Elevation of Privilege Vulnerability CVE-2023-23397.
Microsoft rates this vulnerability as CRITICAL.