Category: Vulnerability Management

Aug 25

Cuba ransomware and Veeam CVE-2023-27532

By Christopher GLEMOT in Cybersecurity, Data Protection, Ransomware, Security, Veeam, Veeam B&R 11, Veeam B&R 12, Vulnerability Management

We continue to read that Cuba Ransomware attacks Veeam Backup servers that are unpatched, unmaintained, or outdated. The Cuba ransomware group is exploiting a bug in data backup software exposed in March, warn security experts. It’s even been claimed that they have added a new set of tools to their arsenal along with CVE-2023-27532, the …

Blue Team, Cuba, CVE-2023-27532, Patch, Ransomware, Veeam, Vulnerability Management

Jun 15

2023 Ransomware Trends Report

By Christopher GLEMOT in Backup, Cloud, Cybersecurity, Data Protection, Ransomware, Security, Vulnerability Management

According to the 2023 Ransomware Trends Report (Data Protection), 85% of organizations suffered at least one cyber attack in the preceding twelve months; an increase from 76% experienced in the prior year. To better understand the preparedness and recoverability of cyber attacks, an independent research firm conducted a blind survey of 1,200 unbiased IT leaders …

Cybersecurity, Data Protection, Ransomware, Security

Jun 13

Critical FortiOS & FortiProxy – Heap buffer overflow Vulnerability

By Christopher GLEMOT in CERT, Vulnerability Management

Critical FortiOS – FG-IR-23-097: Fortinet released security updates to address a heap-based buffer overflow vulnerability [CVE-2023-27997] in FortiOS. An attacker could exploit this vulnerability to take control of an affected system. Hackers are actively exploiting the latest Fortinet’s FortiOS and FortiProxy flaw, targeting government, manufacturing, and critical infrastructure sectors. Take immediate action and update to …

CERT, CVE-2023-27997, FG-IR-23-097, Fortinet, FortiOS, FortiProxy, Infosec

Mar 08

High Veeam Backup & Replication Vulnerability – CVE-2023-27532

By Christopher GLEMOT in Backup, CERT, Security, Veeam, Vulnerability Management

Today, Veeam has released patches for Veeam Backup & Replication v11 and v12. A critical vulnerability (CVSSv3 7.5 – CVE-2023-27532) has been fixed and you should apply the patch as soon as possible. Unauthorized users may be able to request encrypted credentials from the Veeam Backup service, and therefore get access to the backup infrastructure. …

Blue Team, CVE-2023-27532, Infosec, KB4420, KB4424, Veeam, Vulnerability

Feb 06

Ransomware solution for VMware ESX

By Christopher GLEMOT in Cybersecurity, Detection & Response, Ransomware, Security, VMware, Vulnerability Management

Updated February 8, 2023. CISA has released a data recovery script dubbed “ESXiArgs-Recover” in order to help users who have been affected by the massive worldwide ESXiArgs ransomware server attacks on VMWare’s vSphere: GitHub. _________ Hacker group used a method that we encountered for the first time. A super-intelligence who thinks they can only get …

Blue Team, CVE-2022-31696, CVE-2022-31697, CVE-2022-31698, CVE-2022-31699, ESXiArgs, Infosec, Nevada, Ransomware, Vulnerability

Category: Vulnerability Management

Cuba ransomware and Veeam CVE-2023-27532

2023 Ransomware Trends Report

Critical FortiOS & FortiProxy – Heap buffer overflow Vulnerability

High Veeam Backup & Replication Vulnerability – CVE-2023-27532

Ransomware solution for VMware ESX

Follow me

Subscribe to Blog via Email

About me

Top Posts

Enjoy this blog? Please spread the word :)

Category: Vulnerability Management

Cuba ransomware and Veeam CVE-2023-27532

Share this:

2023 Ransomware Trends Report

Share this:

Critical FortiOS & FortiProxy – Heap buffer overflow Vulnerability

Share this:

High Veeam Backup & Replication Vulnerability – CVE-2023-27532

Share this:

Ransomware solution for VMware ESX

Share this:

Follow me

Subscribe to Blog via Email

About me

Top Posts

Enjoy this blog? Please spread the word :)