A ransomware group is exploiting a known vulnerability in Veeam to infect systems with a LockBit variant. A fix for the high-severity flaw in Veeam Backup & Replication software was released in March 2023. The malware operators appear to have gained initial access to their victims’ environment through a dormant account on a Fortinet FortiGate firewall SSL VPN appliance and from there they then exploit the Veeam vulnerability. Ref https://www.veeam.com/kb4424?
Ransomware Operators are Exploiting Known Veeam Vulnerability
You Might Also Like
Check Point Harmony Browse and SandBlast Agent for Browsers for Windows contains a local privilege escalation vulnerability prior to version 90.08.7405.
CISA: Assume VMware Products Not Patched Against Log4Shell are Compromised
