Today > | 7 High | 13 Medium | 5 Low vulnerabilities   -   You can now download lists of IOCs here!

Patch or Peril: A Veeam vulnerability incident

July 12, 2024, 5:49 p.m.

Description

While the vulnerability CVE-2023-27532 was made public in March 2023 and subsequently patched by Veeam for versions 12/11a and later for Veeam Backup & Replication software, Group-IB’s Digital Forensics and Incident Response (DFIR) team recently observed a notable incident related to this vulnerability.

Date

Published: July 12, 2024, 5:31 p.m.

Created: July 12, 2024, 5:31 p.m.

Modified: July 12, 2024, 5:49 p.m.

Indicators

149.28.99.61

149.28.106.252

Attack Patterns

EstateRansomware

T1018

T1571

T1087

T1555

T1505

T1021

T1486

T1070

T1203

T1569

T1204

T1049

T1027

T1053

T1562

T1133

T1078