Citrix data exposed in third-party breach | TechTarget. Citrix Tuesday published a blog confirming that a third-party organization is investigating a possible data breach after a threat actor claimed to have some of the vendor’s data. While there wasn’t a direct Citrix data breach, some customer data was exposed. A third-party breach may have exposed Citrix customer data on the dark web. In a blog post Tuesday, Citrix CISO Fermin Serna confirmed reports that some of the vendor’s data was on sale on a dark web marketplace. He said a third-party organization that held some of Citrix’s data was investigating a breach, but that there is no evidence that Citrix was directly compromised.