Category: Security

• November 14, 2022

  Veeam Supported Products Reaching End of Life in 2023

  

  Times change, and software changes with them, until it’s no longer supported. At any point, a patch to an operating system, a .NET framework update, or anything else really, could end up with the software no longer being backed up properly, or not working at all in production. Without valid support there’s no process to get a fix, and whilst your backup software may still be in support with Veeam, if the vendor won’t fix the problem, it’s time to start panicking. With this in mind, lets explore the software & operating systems being declared end of life in 2023 so we can start planning our upgrades/migrations if necessary.
• July 27, 2022

  Veeam Backup for Microsoft Azure: Updating Account Permissions

  With Veeam Backup for Microsoft Azure v4 being released this week and unlocking new functionality, permissions inevitably require adjusting in scope. In this blog post I show you how to update the necessary permissions.
• July 26, 2022

  Veeam Backup for Microsoft Azure: Repository Backup has Failed

  

  Having recently secured my Azure configuration a little bit too much, too soon, I broke my backups, in this blog post I get to the bottom of this vague error and what it likely means needs reconfiguring…
• July 20, 2022

  Configuring PfSense Dynamic DNS with Azure DNS

  Does your ISP force you to have a dynamic IP address? Tired of using free Dynamic DNS services that make you revalidate all the time? It’s nice and easy & cheap to use Azure DNS, in this blog post I show you how to integrate Azure DNS with PfSense to keep track of your dynamic IP address.
• July 18, 2022

  Securing Veeam Backup for Microsoft Azure: Password/Certificate Auth & Other Hardening Tips

  Veeam Backup for Microsoft Azure is a brilliant product for protecting Microsoft Azure-based workloads, but there are certainly some configuration changes that could help secure the product better. Especially when this is the application protecting your data. Read on to find out how to secure the Veeam Backup for Microsoft Azure appliance.
• June 3, 2022

  Microsoft Exchange Server vNext Delayed – New Details Available

  In 2020, Microsoft announced the vNext editions of their popular SharePoint, Skype for Business, Project, and Exchange Server applications, due for release in the second half of 2021. However, as of the time of publication, only SharePoint and Project Server Subscription Editions are available. The other products have had their delays greeted with a wall […]
• June 2, 2022

  Denial of Service via… SSL Certificates? CVE-2022-0778

  Congratulations if this was on your InfoSec Bingo Card, Denial of Service via maliciously crafted SSL certificates! Read on for full details!
• May 20, 2022

  Critical VMware Vulnerability: VMSA-2022-0014

  

  VMware recently released information regarding VMSA-2022-0014, a critical authentication bypass & privilege escalation vulnerability for multiple products. In this blog post, I’ve collated some key information to swiftly identify if you’re impacted, as well as calling out must know information around remediation.
• February 22, 2022

  Using an Asustor NAS? Shut it down now!

  Hi everyone, Quick one here due to time sensitivity. Deadbolt, the ransomware that has previously been utilised to attack QNAP NAS devices, has been used to attack Asustor NAS devices. Looks like there’s an exploit in the EZ Connect system, so advice is currently to disconnect the NAS from the internet and disable this service […]
• February 16, 2022

  Backups, Trust, Boundaries, and Cloud Security Considerations in 2022

  

  Cloud adoption continues to increase as organisations are either taking their first steps into the cloud, or progressing their IT strategies, whether it’s a full cloud migration, multi-cloud or delivering a hybrid architecture. A great workload to leverage the cloud has been as a backup repository. By using the cloud, we can meet multiple improvements […]