VEEAM Exploit Seen Used Again With a New Ransomware: “Frag”

What Is Frag and What Does It Do?

The new ransomware, named "Frag," encrypts files on victims' computers and demands a ransom payment in bitcoins. According to security researchers, the Frag ransomware is being distributed through a new exploit that targets a vulnerability in Veeam Backup & Replication software.

The vulnerability, which was patched by Veeam in February 2022, allows attackers to gain remote access to Veeam backup servers. Once they have access to the server, attackers can deploy the Frag ransomware on the network.

The Frag ransomware encrypts files using a strong encryption algorithm. This makes it very difficult for victims to recover their files without paying the ransom.

What Can You Do to Protect Yourself From Frag?

There are a few things you can do to protect yourself from the Frag ransomware:

Keep your Veeam Backup & Replication software up to date.
Be careful about opening attachments from unknown senders.
Use a strong antivirus program.
Back up your files regularly.

If you are infected with the Frag ransomware, do not pay the ransom. Paying the ransom only encourages the attackers to continue their attacks.

Instead, try to restore your files from a backup. If you do not have a backup, you can try using a file recovery tool. However, there is no guarantee that you will be able to recover all of your files.

What Is Veeam Doing to Address the Frag Ransomware?

Veeam is aware of the Frag ransomware and is working on a fix. In the meantime, Veeam recommends that users update their software to the latest version.

Veeam is also working with law enforcement and other security organizations to investigate the Frag ransomware attack.

How Can I Get More Information About the Frag Ransomware?

For more information about the Frag ransomware, please visit the following resources: