Today > 2 Critical | 3 High | 25 Medium vulnerabilities - You can now download lists of IOCs here!

Patch or Peril: A Veeam vulnerability incident

July 12, 2024, 5:49 p.m.

External References

https://www.group-ib.com/
https://otx.alienvault.com/

Description

While the vulnerability CVE-2023-27532 was made public in March 2023 and subsequently patched by Veeam for versions 12/11a and later for Veeam Backup & Replication software, Group-IB’s Digital Forensics and Incident Response (DFIR) team recently observed a notable incident related to this vulnerability.

Date

Published: July 12, 2024, 5:31 p.m.

Created: July 12, 2024, 5:31 p.m.

Modified: July 12, 2024, 5:49 p.m.

Indicators

149.28.99.61

149.28.106.252

Download all indicators here!

Attack Patterns

EstateRansomware

T1018

T1571

T1087

T1555

T1505

T1021

T1486

T1070

T1203

T1569

T1204

T1049

T1027

T1053

T1562

T1133

T1078