ALPHV Ransomware Affiliate Targets Veritas Backup Bugs

07 April 2023
UNC4466, tracked as an affiliate of ALPHV/BlackCat ransomware, was observed abusing three security holes in the Veritas Backup Exec product. The high-severity flaws targeted by the group include CVE-2021-27876, CVE-2021-27877, and CVE-2021-27878. In spite of a fix released in 2021, several endpoints are vulnerable even today.