Hackers attack Veritas data back-up flaw


Hackers attack Veritas data back-up flaw

Antony Savvas

Hackers are exploiting an unpatched vulnerability in Symantec’s Veritas Backup Exec Agent for Windows servers.

A flaw in the product’s network data management protocol system potentially allows attackers to gain access to users’ systems and download files.

The flaw has been reported by both the Fr-SIRT (French Security Incident Response Team) and the SANS Internet Storm Centre.

No patch is currently available for the flaw and Symantec, which acquired Veritas in July, is recommending that users block or restrict access to TCP (Transmission Control Protocol) port 10000, which uses the flawed system.

The threat affects versions 8.x, 9.0, 9.1 and 10.0 of Backup Exec for Windows.

Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy