On the evening of January 19th Citrix issued a permanent fix to a vulnerability they previously announced and to which a proof of concept exploit was subsequently made available. This vulnerability affected Citrix customers who use their load balancers, including Ceridian.
In response to Citrix’s issue, Ceridian:
At this time, Ceridian has no evidence of access to, nor exfiltration or manipulation of Ceridian customer data as a result of this vulnerability.