Security Affairs

MAY 22, 2024

A critical security vulnerability in Veeam Backup Enterprise Manager could allow threat actors to bypass authentication. A critical vulnerability, tracked as CVE-2024-29849 (CVSS score: 9.8), in Veeam Backup Enterprise Manager could allow attackers to bypass authentication. ” reads the advisory published by the vendor.

Backups 127

Backups Authentication Accountability Software 127

Security Affairs

MARCH 15, 2022

Veeam addressed two critical vulnerabilities impacting the Backup & Replication product for virtual environments. Veeam has released security patches to fix two critical vulnerabilities, tracked as CVE-2022-26500 and CVE-2022-26501 (CVSS score of 9.8), impacting the Backup & Replication solution for virtual environments.

Backups 130

Backups Software Authentication Hacking 130

Security Affairs

OCTOBER 11, 2024

Sophos reports ransomware operators are exploiting a critical code execution flaw in Veeam Backup & Replication. Sophos researchers warn that ransomware operators are exploiting the critical vulnerability CVE-2024-40711 in Veeam Backup & Replication to create rogue accounts and deploy malware. reads the advisory.

Backups 127

Backups Ransomware VPN Authentication 127

Security Affairs

JUNE 11, 2024

A proof-of-concept (PoC) exploit code for a Veeam Backup Enterprise Manager authentication bypass flaw CVE-2024-29849 is publicly available. Researcher Sina Kheirkha analyzed the Veeam Backup Enterprise Manager authentication bypass flaw CVE-2024-29849 and a proof of concept exploit for this issue.

Backups 131

Backups Authentication Software Hacking 131

Security Affairs

OCTOBER 14, 2021

WhatsApp made available end-to-end encrypted chat backups on iOS and Android to prevent anyone from accessing user chats. WhatsApp is rolling out end-to-end encrypted chat backups on both iOS and Android devices, the move aims at implementing an optional layer of security to protect backups stored on Google Drive or iCloud cloud storage.

Backups 117

Backups Encryption Passwords Hacking 117

Security Affairs

DECEMBER 4, 2024

Veeam Service Provider Console (VSPC) is a management and monitoring solution designed for service providers offering backup, disaster recovery, and cloud services. In November, researchers reported that a critical flaw, tracked as CVE-2024-40711, in Veeam Backup & Replication (VBR) was exploited to deploy Frag ransomware.

Backups 111

Backups Ransomware Accountability Hacking 111

Security Affairs

DECEMBER 11, 2024

has charged a Chinese national for hacking thousands of Sophos firewall devices worldwide in 2020. has charged the Chinese national Guan Tianfeng (aka gbigmao and gxiaomao) for hacking thousands of Sophos firewall devices worldwide in 2020. Tianfeng worked at Sichuan Silence Information Technology Co., continues the report.

Firewall 73

Firewall Hacking Malware Passwords 73

Security Affairs

NOVEMBER 3, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cryptocurrency 108

Cryptocurrency Hacking Phishing Cyber Attacks 108

Security Affairs

MARCH 23, 2023

Researchers released a PoC exploit code for a high-severity vulnerability in Veeam Backup & Replication (VBR) software. Veeam recently addressed a high-severity flaw, tracked as CVE-2023-27532 , in Veeam Backup and Replication (VBR) software. “This may lead to an attacker gaining access to the backup infrastructure hosts.”

Backups 98

Backups Engineering Software Encryption 98

The Last Watchdog

JUNE 21, 2020

In many cases, the crooks hack managed service providers (MSPs) first and then use this access to compromise the partnering organizations. In the meanwhile, both businesses and individuals should be proactive in terms of their defenses and maintain data backups to minimize the impact of a potential ransomware attack.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Security Affairs

JUNE 16, 2023

An updated version of the Android remote access trojan GravityRAT can steal WhatsApp backup files and can delete files ESET researchers discovered an updated version of Android GravityRAT spyware that steals WhatsApp backup files and can delete files. The malware is distributed as the messaging apps BingeChat and Chatico.

Backups 98

Backups Spyware Malware Accountability 98

Security Affairs

OCTOBER 13, 2024

The Mexican Drug Cartels Want You Casio: Notice of Partial Service Outage and Information Leak Caused by Ransomware Attack He founded a “startup” to access sanctioned Russian websites: the cyber police of Khmelnytskyi region exposed the hacker Hacked ‘AI Girlfriend’ Data Shows Prompts Describing Child Sexual Abuse Malware Over 300,000!

Data breaches 114

Data breaches Cryptocurrency Artificial Intelligence Cybercrime 114

Security Affairs

APRIL 8, 2023

US CISA has added Veritas Backup Exec flaws, which were exploited in ransomware attacks, to its Known Exploited Vulnerabilities catalog. Unlike other ALPHV affiliates, UNC4466 doesn’t rely on stolen credentials for initial access to victim environments.

Backups 98

Backups Spyware Ransomware Education 98

Security Affairs

JANUARY 9, 2025

Ukrainian Cyber Alliance hacked Russian ISP Nodex, stole sensitive data, and wiped systems, highlighting their cyberattack capabilities. The group published a series of screenshots as proof of the security breach. The images include the consoles of the Veeam backup and Hewlett Packard Enterprise server. “Dear subscribers!

Backups 70

Backups Internet Internet Hacking 70

Security Affairs

APRIL 4, 2023

An ALPHV/BlackCat ransomware affiliate was spotted exploiting vulnerabilities in the Veritas Backup solution. An affiliate of the ALPHV/BlackCat ransomware gang, tracked as UNC4466, was observed exploiting three vulnerabilities in the Veritas Backup solution to gain initial access to the target network. CVSS score: 8.1).

Backups 98

Backups Ransomware Authentication Penetration Testing 98

Security Affairs

MARCH 8, 2023

Veeam addressed a high-severity vulnerability in the Backup Service that impacts Backup & Replication software. Veeam addressed a high-severity vulnerability in the Backup Service, tracked as CVE-2023-27532 (CVSS v3 score: 7.5), that impacts all versions of Backup & Replication software versions.

Backups 98

Backups Encryption Firewall Software 98

Security Affairs

AUGUST 21, 2020

During the ordinary monitoring of Deepweb and Darkweb , researchers at Cyble came across the leak disclosure post published by the Maze ransomware operators that claim the hack of the Hoa Sen Group. SecurityAffairs – hacking, Maze Ransomware Operators). Hoa Sen Group is the no.1 Pierluigi Paganini.

Ransomware 145

Ransomware Hacking Advertising Backups 145

Security Affairs

AUGUST 10, 2020

Researchers from threat intelligence firm Cyble reported that Nefilim ransomware operators allegedly hacked The SPIE Group , an independent European leader in multi-technical services. SecurityAffairs – hacking, SPIE group). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Ransomware 142

Ransomware Hacking Advertising Backups 142

Security Boulevard

JUNE 26, 2022

How Information Security Breaks The Classic IT Model. How does information security fit into the producer/consumer model? In some cases, yes, information security does fit into this in several ways: a. The number of endpoints required to have EDR/XDR security. Information Security as a Utility.

Information Security 98

Information Security Technology Marketing Data breaches 98

Security Affairs

DECEMBER 16, 2022

US CISA added two vulnerabilities impacting Veeam Backup & Replication software to its Known Exploited Vulnerabilities Catalog. Cybersecurity and Infrastructure Security Agency (CISA) added two vulnerabilities impacting Veeam Backup & Replication software, tracked as CVE-2022-26500 and CVE-2022-26501 (CVSS 3.1

Backups 98

Backups Authentication Software Risk 98

Security Affairs

NOVEMBER 13, 2024

Bitdefender observed an attack on a healthcare organization, where threat actors encrypted Windows 10, Windows 11, and Windows Server devices, including backups. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, iPhones) The encryption process took just 2.5

Ransomware 120

Ransomware Encryption Passwords Backups 120

Security Affairs

JANUARY 25, 2021

The researcher Rajshekhar Rajaharia analyzed the leaked data, it is a MongoDB database of 6GB that contains three backup files with BuyUcoin data. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. SecurityAffairs – hacking, data breach). Trading in #cryptocurrency ? Pierluigi Paganini.

Cryptocurrency 143

Cryptocurrency Hacking InfoSec Data breaches 143

Security Affairs

DECEMBER 12, 2023

The Ukrainian government’s military intelligence service announced the hack of the Russian Federal Taxation Service (FNS). The military intelligence service said that the hack was the result of a successful special operation on the territory of Russia. ” concludes the statement. The attack is linked to the ongoing conflict.

Hacking 132

Hacking Cyber Attacks Backups Government 132

Security Affairs

JANUARY 24, 2023

GoTo is notifying customers that its development environment was breached in November 2022, attackers stole customers’ backups and encryption key. “Upon learning of the incident, we immediately launched an investigation, engaged Mandiant, a leading security firm, and alerted law enforcement. .

Backups 98

Backups Encryption Data breaches Passwords 98

Security Affairs

JANUARY 13, 2024

The Finish National Cybersecurity Center (NCSC-FI) warns of increased Akira ransomware attacks targeting NAS and tape backup devices of organizations in the country. Threat actors are wiping NAS and backup devices. Cisco investigated the hacking campaign with the help of Rapid7. concludes the alert.

Ransomware 133

Ransomware Backups VPN Authentication 133

Security Affairs

JUNE 24, 2020

firm Frost & Sullivan suffered a data breach, data from an unsecured backup that were exposed on the Internet was sold by a threat actor on a hacker forum. “The breach occurred to a misconfigured backup directory on one of Frost and Sullivan public-facing servers. SecurityAffairs – hacking, Frost & Sullivan).

Data breaches 144

Data breaches Backups Advertising Hacking 144

Security Affairs

JANUARY 13, 2024

The Finish National Cybersecurity Center (NCSC-FI) warns of increased Akira ransomware attacks targeting NAS and tape backup devices of organizations in the country. Threat actors are wiping NAS and backup devices. Cisco investigated the hacking campaign with the help of Rapid7. concludes the alert.

Ransomware 120

Ransomware Backups VPN Authentication 120

Security Affairs

MAY 11, 2021

Maintain offline, encrypted backups of data and regularly test your backups. Regularly conduct backup procedures and keep backups offline or in separated networks. SecurityAffairs – hacking, Avaddon). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Ransomware 137

Ransomware Backups Antivirus DDOS 137

Security Affairs

MARCH 20, 2025

Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, CISA ) CISA orders federal agencies to fix this vulnerability byApril 9, 2025.

Backups 69

Backups Hacking Cybersecurity Malware 69

Security Affairs

FEBRUARY 11, 2025

The Talos researchers discovered a number of features implemented by Phobos allowing operators to establish persistence in a targeted system, perform speedy encryption, and remove backups. Disable system recovery, backup and shadow copies and the Windows firewall. Embedded configuration with more than 70 options available.

Ransomware 69

Ransomware Encryption Backups Malware 69

Security Affairs

MARCH 14, 2022

Anonymous claims to have hacked the systems of the German subsidiary of Russian energy giant Rosneft and stole 20TB of data. The Anonymous hacker collective claimed to have hacked the German branch of the Russian energy giant Rosneft. SecurityAffairs – hacking, BazarLoader). Anonymous has attacked the energy company Rosneft.

Hacking 100

Hacking Internet Internet DDOS 100

Krebs on Security

OCTOBER 8, 2020

There’s an old adage in information security: “Every company gets penetration tested, whether or not they pay someone for the pleasure.” ” Many organizations that do hire professionals to test their network security posture unfortunately tend to focus on fixing vulnerabilities hackers could use to break in.

Cybercrime 350

Cybercrime Malware VPN Ransomware 350

Security Affairs

JUNE 1, 2020

Last week a member of the Joomla Resources Directory (JRD) team left an unencrypted full backup of the JRD site ( resources.joomla.org ) on an unsecured Amazon Web Services S3 bucket operated by the company. “JRD full site backups (unencrypted) were stored in a third-party company Amazon Web Services S3 bucket.

Data breaches 136

Data breaches Backups Passwords Advertising 136

Security Affairs

JUNE 27, 2020

The group confirmed that the broadcasting of France 3 will be transferred to the headquarters of France Televisions, the company also activated the backup site in response to the incident. SecurityAffairs – hacking, France Télévisions). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Cyber Attacks 144

Cyber Attacks Backups Advertising Media 144

Security Affairs

MARCH 23, 2025

They stage and exfiltrate data, including confidential files and database backups, using SQLCMD. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, UAT-5918) Their tactics ensure long-term access for data theft across compromised enterprises.

Backups 66

Backups Healthcare Accountability Malware 66

Security Affairs

NOVEMBER 8, 2023

The FBI also published recommendations for organizations to improve their security posture in response to these new activity trends. The FBI also recommends reviewing the security posture of third-party vendors.

Ransomware 136

Ransomware Backups Encryption Phishing 136

Security Affairs

AUGUST 12, 2020

The City of Lafayette, Colorado, USA, has been forced to pay $45,000 because they were unable to restore necessary files from backup. The City did not disclose technical details of the hack either the family of ransomware that infected its systems, it only stated that it does not believe any data was stolen. Pierluigi Paganini.

Backups 143

Backups Advertising Ransomware Hacking 143