Veeam has released a new security advisory addressing three vulnerabilities in its software suite, including two critical flaws rated with a CVSS score of 9.9.
Category: Vulnerability Management
Aug 25
Cuba ransomware and Veeam CVE-2023-27532
We continue to read that Cuba Ransomware attacks Veeam Backup servers that are unpatched, unmaintained, or outdated. The Cuba ransomware group is exploiting a bug in data backup software exposed in March, warn security experts. It’s even been claimed that they have added a new set of tools to their arsenal along with CVE-2023-27532, the …
Jun 15
2023 Ransomware Trends Report
According to the 2023 Ransomware Trends Report (Data Protection), 85% of organizations suffered at least one cyber attack in the preceding twelve months; an increase from 76% experienced in the prior year. To better understand the preparedness and recoverability of cyber attacks, an independent research firm conducted a blind survey of 1,200 unbiased IT leaders …
Jun 13
Critical FortiOS & FortiProxy – Heap buffer overflow Vulnerability
Critical FortiOS – FG-IR-23-097: Fortinet released security updates to address a heap-based buffer overflow vulnerability [CVE-2023-27997] in FortiOS. An attacker could exploit this vulnerability to take control of an affected system. Hackers are actively exploiting the latest Fortinet’s FortiOS and FortiProxy flaw, targeting government, manufacturing, and critical infrastructure sectors. Take immediate action and update to …
Mar 08
High Veeam Backup & Replication Vulnerability – CVE-2023-27532
Today, Veeam has released patches for Veeam Backup & Replication v11 and v12. A critical vulnerability (CVSSv3 7.5 – CVE-2023-27532) has been fixed and you should apply the patch as soon as possible. Unauthorized users may be able to request encrypted credentials from the Veeam Backup service, and therefore get access to the backup infrastructure. …
Follow me
