HC3 warns of Veeam software vulnerability targeting encrypted credentials

Unauthenticated users can exploit a vulnerability in Veeam Backup & Replication software to access networks and obtain encrypted credentials, according to Veeam Software. Due to increased cyberattacks targeting this vulnerability, the Health Sector Cybersecurity Coordination Center recommends all healthcare organizations using this software to keep systems updated and patch vulnerabilities. The cybercrime group FIN7 is believed to be behind recent attacks on Veeam servers.