HC3: Cyberattacks targeting Veeam Backup & Replication software flaw on the rise

Healthcare organizations across the U.S. have been warned by the Department of Health and Human Services' Health Sector Cybersecurity Coordination Center regarding the increasing number of cyberattacks exploiting a Veeam Backup & Replication software vulnerability, tracked as CVE-2023-27532, HealthITSecurity reports. Successful exploitation of the flaw could result in the compromise of backup infrastructure hosts, data theft, and ransomware deployment, according to the HC3 alert. "What makes this threat significant is that in addition to backing up and recovering VMs, it is used to protect and restore individual files and applications for environments such as Microsoft Exchange and SharePoint, which are used in the HPH sector," said HC3. Such an alert comes after the vulnerability had been exploited by the FIN7 hacking group in attacks since March. "HC3 recommends that all HPH sector entities remain vigilant and aware of suspicious activity, keep systems up to date, and immediately patch any vulnerable systems. In addition to this, organizations are encouraged to take a proactive approach by using CISA's free cybersecurity services and tools to strengthen their cyber posture," the alert added.