"Year-Old Veeam Vulnerability Exploited in Fresh Ransomware Attacks"

The "Akira" and "EstateRansomware" cybercrime groups have been exploiting a year-old Veeam Backup and Replication vulnerability to steal data. The exploited security flaw, tracked as CVE-2023-27532 with a CVSS score of 7.5, was patched in March 2023. Proof-of-Concept (PoC) code for the vulnerability was published shortly after, and the first exploitation of unpatched Veeam Backup and Replication instances was observed in April 2023. According to Veeam, the bug could be used to extract encrypted credentials stored in the configuration database. This article continues to discuss the exploitation of a year-old Veeam Backup and Replication vulnerability by two ransomware groups.

SecurityWeek reports "Year-Old Veeam Vulnerability Exploited in Fresh Ransomware Attacks"

Submitted by grigby1
 

Submitted by Gregory Rigby on