The U.S. government has warned of attacks carried out by a threat actor called the Bl00dy
Ransomware Gang that attempt to exploit vulnerable PaperCut servers.
The agencies say the gang left ransom notes on victim systems demanding payment in exchange for decryption of encrypted files.
The disclosure comes as cybersecurity firm eSentire unearthed new activity targeting an unnamed education sector customer that involved the exploitation of CVE-2023-27350 to drop an XMRig cryptocurrency miner.
Attacks against paperCut print management servers have also been deployed by Iranian state-sponsored threat groups Mango Sandstorm and Mint Sandstorm, Microsoft says.
Last week, Microsoft revealed similar attacks against its own PrintSafe servers by two different threat actors.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply