A notorious Russian-speaking ransomware group has updated its attack tooling to include a Veeam exploit designed to harvest logins, according to BlackBerry. The security-focused vendor said its discovery came from investigations into attacks by the Cuba group on a US critical national infrastructure provider and a South American IT integrator.

Source: Infosecurity