POLICY-OTHER Veeam Backup and Replication empty user name login detected
This rule looks for authentication attempt to Veeam where no username is specified.
What To Look For
This rule alerts when an anonymous authentication attempt to Veeam is detected.
No public information
No known false positives
Cisco Talos Intelligence Group
MITRE ATT&CK Framework
Tactic: Initial Access
Technique: Default Accounts
For reference, see the MITRE ATT&CK vulnerability types here:
An Authentication Bypass occurs when there is a way to avoid providing user credentials to a system before performing restricted operations on said system.
CVE Additional Information