Skip to main content
Solved

What is the plan to address the Cuba Ransomware exploit?

  • August 23, 2023
  • 6 comments
  • 209 views
bp4JC
Forum|alt.badge.img+3
  • bp4JC
  • Influencer
  • 136 comments

What is Veeam’s plan to address the newly discovered Cuba Ransomware exploit? Is there a patch forthcoming soon?

 

https://www.bleepingcomputer.com/news/security/cuba-ransomware-uses-veeam-exploit-against-critical-us-organizations/

Best answer by coolsport00

Hi @bp4JC - Veeam already has a patch out, since March. @Rick Vanover reminded folks to update their environments yesterday. See here

6 comments

coolsport00
Forum|alt.badge.img+21
  • coolsport00
  • Veeam Legend
  • 4897 comments
  • Answer
  • August 23, 2023

Hi @bp4JC - Veeam already has a patch out, since March. @Rick Vanover reminded folks to update their environments yesterday. See here

Shane Williford - Veeam VMCA/VMCE | Veeam Legend | VUG Leader | VCP-DCV | Twitter: @coolsport00
Chris.Childerhose
Forum|alt.badge.img+21
  • Chris.Childerhose
  • Veeam Legend, Veeam Vanguard
  • 9557 comments
  • August 23, 2023

Check here in the Cyber Security space as it was covered there - https://community.veeam.com/cyber-security-space-95/veeam-exploit-used-against-critical-us-orgs-5455

The exploit is RDP not Veeam specific and the March patch for Veeam covered this.

Chris Childerhose - VMCA2024 | VMCE2023 | VMCE-SP2024 | Veeam Vanguard 8* | Veeam Legend 5* | VUG Canada Leader | vExpert 6* | Toronto VMUG Leader | VCAP-DCV/VCP-DCV | Object First Ace | Cisco Champion | Twitter: @cchilderhose | Blog Site – https://just-virtualization.tech
dips
Forum|alt.badge.img+7
  • dips
  • On the path to Greatness
  • 823 comments
  • August 23, 2023

Not much more to add as @coolsport00 and @Chris.Childerhose have already provided info. 

Ensure you have an offsite backup that is offline (as appropriate), make use of immutable storage and test backups regularly to ensure RTOs and RPOs are being met just in case the worst happens. 


 

 

Dipen N. K. | IT Security Specialist | Veeam Legend 2022 - 2025 | Cyber Security Space VUG Leader
Iams3le
Forum|alt.badge.img+11
  • Iams3le
  • Veeam Legend
  • 1544 comments
  • August 24, 2023

Hi @bp4JC - Veeam already has a patch out, since March. @Rick Vanover reminded folks to update their environments yesterday. See here

Precise and thorough answer! Cheers...

[Microsoft MVP 2x | Veeam Legend (2021 -2025) | VMware vExpert 5x | Cisco Champion 3x | Object First Ace 2x]
Rick Vanover
Forum|alt.badge.img+10
  • Rick Vanover
  • RICKATRON
  • 869 comments
  • August 24, 2023

You beat me to my own post @coolsport00 → The update has been out for a while, and I’m super happy Veeam ONE VID caught it too.

Twitter @RickVanover | Email: rick.vanover@veeam.com
coolsport00
Forum|alt.badge.img+21
  • coolsport00
  • Veeam Legend
  • 4897 comments
  • August 24, 2023

😉

Shane Williford - Veeam VMCA/VMCE | Veeam Legend | VUG Leader | VCP-DCV | Twitter: @coolsport00


Terms & ConditionsAccessibility statement