The attack was detected on May 15, 2024, and Deloitte said the criminals behind it broke in using a compromised Citrix account. The investigators were not able to figure out how that account, named ...