Head Topics

You had a year to patch this Veeam flaw and now it's going to hurt

United Kingdom News News

You had a year to patch this Veeam flaw and now it's going to hurt
United Kingdom Latest News,United Kingdom Headlines
  • 📰 TheRegister
  • ⏱ Reading Time:
  • 41 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 20%
  • Publisher: 61%

LockBit variant targets backup software - which you may remember is supposed to help you recover from ransomware

Yet another new ransomware gang, this one dubbed EstateRansomware, is exploiting a Veeam vulnerability that was patched more than a year ago to drop file-encrypting malware, a LockBit variant, and extort payments from victims., in March 2023 for versions 12/11a and later of its backup and replication software. The high-severity bug earned a 7.5 CVSS rating.

Security researchers at Singaporean outfit Group-IB security researchers spotted EstateRansomware in early April, and say the crew gains initial access into targeted networks by brute force attacks against FortiGate firewall SSL VPN appliances using a dormant account.from Group-IB, subsequent VPN connections originated from a US-based IP address.

Next, the criminals used this access to steal user credentials and exploit the backup and replication software's vulnerability — just as Veeam had warned could happen if users didn't patch when it issued the fix back in March 2023. The thieves used several network scanning and password recovery tools, including SoftPerfect Netscan and Nirsoft, to collect information on hosts, open ports, file shares, and to steal credentials.

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

TheRegister /  🏆 67. in UK

United Kingdom Latest News, United Kingdom Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

Ransomware thieves bewareRansomware thieves bewareWhy Object First and Veeam tick the box for encryption and immutability
Read more »

Ukrainian cops collar Kyiv programmer believed to be Conti, LockBit linchpinUkrainian cops collar Kyiv programmer believed to be Conti, LockBit linchpin28-year-old accused of major ransomware attacks across Europe
Read more »

Ransomware crews investing in custom data stealing malwareRansomware crews investing in custom data stealing malwareBlackByte, LockBit among the criminals using bespoke tools
Read more »

Indonesian government datacenter locked down in $8M ransomware rumbleIndonesian government datacenter locked down in $8M ransomware rumbleVariant of Lockbit 3.0 said to be weapon of choice for attack
Read more »

Verdict in from experts as Carlos Sainz complains about Lewis Hamilton’s overtakeVerdict in from experts as Carlos Sainz complains about Lewis Hamilton’s overtake“Somebody is going to get squeezed, get nudged, somebody is going to suffer"
Read more »

The First Descendant update 1.01 patch notes fixes crashes and server issuesThe First Descendant update 1.01 patch notes fixes crashes and server issuesThe first update for The First Descendant is now live and aims to fix many of the issues that have been plaguing the game since launch.
Read more »



Render Time: 2025-04-18 18:06:29