Hi! In the recent Veeam Backup & Replication v12.1, Veeam brings many new features and capabilities related to data security and integrations with cybersec tools. One of them is the capability to scan backup files with Yara rules.
This is a great feature due to the native flexibility of Yara rules and its wide use in the community.
In this demonstration, we will see how to create a simple Yara rule, associate a malicious file with a VM, and obtain uncompromised recovery points through a scan operation. Everything is effortless and intuitive. I hope it is helpful for the community!
