A ransomware group is exploiting a known vulnerability in Veeam to infect systems with a LockBit variant. A fix for the high-severity flaw in Veeam Backup & Replication software was released in March 2023. The malware operators appear to have gained initial access to their victims’ environment through a dormant account on a Fortinet FortiGate firewall SSL VPN appliance and from there they then exploit the Veeam vulnerability. Ref https://www.veeam.com/kb4424?
