Bl00dy Ransomware Group Exploits PaperCut Vulnerability in Education Sector Attacks

May 12, 2023 at 04:51 PM

•

1 min read

Bl00dy Ransomware Group Exploits PaperCut Vulnerability in Education Sector Attacks — Photo: BleepingComputer

TL;DR Summary

The FBI and CISA have issued a joint advisory warning that the Bl00dy Ransomware gang is exploiting a PaperCut remote-code execution vulnerability to gain initial access to networks, with a focus on the education sector. The vulnerability has been under active exploitation since at least April 18, 2023, and organizations have been slow to install the update, allowing exposure to attacks. The Bl00dy ransomware operation launched in May 2022 and uses an encryptor based on the leaked LockBit source code. The recommended action is to apply the available security updates on PaperCut MF and NG servers.

Topics:business #bl00dy-ransomware #cve-2023-27350 #cybersecurity #education-sector #fbi #papercut

Share this article

FBI: Bl00dy Ransomware targets education orgs in PaperCut attacks BleepingComputer
Bl00dy Ransomware Gang Strikes Education Sector with Critical PaperCut Vulnerability The Hacker News
Ransomware Group Exploits PaperCut Flaw in Education Sector Cyberattacks Duo Security
CISA: Bl00dy Ransomware Gang using printer vulnerability to attack schools The Record by Recorded Future
PaperCut Software Flaw Sparks Ransomware Attacks, CISA Warns Infosecurity Magazine
View Full Coverage on Google News

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

80%

475 → 96 words

Want the full story? Read the original article

Read on BleepingComputer

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights