Microsoft has linked the recent Papercut attacks to two programs, CLOP and LockBit, which used available vulnerabilities to steal corporate data. Last month, Papercut software had two vulnerabilities that were corrected, allowing unauthorized attackers to execute harmful code and disclose confidential data.
On April 19, Papercut representatives reported that these vulnerabilities, marked as cve-2023-27350 and CVE-2023-27351, were actively used by cybercriminals, prompting administrators to urgently renew their Papercut servers to the latest version. The vulnerabilities were classified by type and whether they were local or remote, as well as the result of the exploit, such as EOP, DOS, or Spulping.
Just a few days later, there were multiple schemes offering the explosion of zero day exploits, including Exploit-A-A-Service.