We continue to read that Cuba Ransomware attacks Veeam Backup servers that are unpatched, unmaintained, or outdated. The Cuba ransomware group is exploiting a bug in data backup software exposed in March, warn security experts. It’s even been claimed that they have added a new set of tools to their arsenal along with CVE-2023-27532, the …
Tag: Blue Team
Aug 24
Akira ransomware infection routine
A ransomware gang named “Akira” was discovered on the Dark Web this year. Cybersecurity experts have uncovered new technical details about the Akira ransomware, shedding light on the workings of this latest threat to the digital world. Here’s a blog post on the infection routine.
Mar 08
High Veeam Backup & Replication Vulnerability – CVE-2023-27532
Today, Veeam has released patches for Veeam Backup & Replication v11 and v12. A critical vulnerability (CVSSv3 7.5 – CVE-2023-27532) has been fixed and you should apply the patch as soon as possible. Unauthorized users may be able to request encrypted credentials from the Veeam Backup service, and therefore get access to the backup infrastructure. …
Mar 07
Critical FortiOS and FortiProxy Vulnerability – FG-IR-23-001
Critical FortiOS and FortiProxy Vulnerability – FG-IR-23-001: Fortinet has just announced a critical vulnerability in all versions. A buffer underwrite (‘buffer underflow’) vulnerability in FortiOS & FortiProxy administrative interface may allow a remote unauthenticated attacker to execute arbitrary code on the device and/or perform a DoS on the GUI, via specifically crafted requests. The impact …
Feb 06
Ransomware solution for VMware ESX
Updated February 8, 2023. CISA has released a data recovery script dubbed “ESXiArgs-Recover” in order to help users who have been affected by the massive worldwide ESXiArgs ransomware server attacks on VMWare’s vSphere: GitHub. _________ Hacker group used a method that we encountered for the first time. A super-intelligence who thinks they can only get …
- 1
- 2