1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Critical Veeam backup vulnerabilities exposed Windows users to ra

    From TechnologyDaily@1337:1/100 to All on Thu Mar 17 15:30:03 2022
    Critical Veeam backup vulnerabilities exposed Windows users to ransomware assault

    Date:
    Thu, 17 Mar 2022 15:05:03 +0000

    Description:
    Veeam vulnerabilities could have been used to mount denial of service or ransomware attacks.

    FULL STORY ======================================================================

    Two critical vulnerabilities has been discovered in Veeam backup solutions which may have put users at risk of a ransomware attack.

    Veeam Backup & Replication was found to be vulnerable to CVE-2022-26500, and CVE-2022-26501 by Positive Technologies researcher Nikita Petrov, and
    although specific details were not disclosed, the flaws are thought to allow unauthenticated users access to internal API functions.

    A remote attacker may send input to the internal API which may lead to uploading and executing of malicious code, Positive's report said. TechRadar needs you!

    We're looking at how our readers use VPNs with different devices so we can improve our content and offer better advice. This survey shouldn't take more than 60 seconds of your time, and entrants from the UK and US will have the chance to enter a draw for a 100 Amazon gift card (or equivalent in USD). Thank you for taking part.

    Click here to start the survey in a new window << Ransomware and denial of service

    The researcher did say that the vulnerabilities could be leveraged to gain initial access and establish persistence on the target endpoint, install malware , steal data, or directly execute commands that extract, or delete data, mount denial of service attacks, or encrypt the infrastructure and run
    a ransomware attack.

    In total, three versions of the tool were affected by the vulnerability: 9.5, 10, and 11. Patches are already available for the latter two, with users
    being urged to update immediately. Those that are unable to apply the patches right now, can temporarily stop or disable the Veeam Distribution Service to mitigate any potential risks. Read more

    Its time to attack your ransomware recovery strategy


    Ransomware attacks saw a huge rise in 2021


    The average ransomware group only lives for two years

    The same researcher discovered an additional vulnerability in Veeam Agent for Microsoft Windows, which is a data backup software for the Microsoft OS. Tracked as CVE-2022-26503, the flaw allows attackers to execute arbitrary
    code on the node with maximum rights (Local Privilege Escalation) gaining access to the resources of the compromised node with maximum privileges.

    In other words, any data stored on a vulnerable endpoint can be stolen, or used to mount further attacks. Versions 2.0, 2.1, 2.2, 3.0.2, 4.0, and 5.0 of the product were affected, the company confirmed. Patches for versions 4.0
    and 5.0 have been issued. Keep your data safe with the best cloud backup solutions right now



    ======================================================================
    Link to news story: https://www.techradar.com/news/critical-veeam-backup-vulnerabilities-exposed-w indows-users-to-ransomware-assault/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)