🚨 #Microsoft (https://nitter.moomoo.me/search?q=%23Microsoft) confirms active exploitation of PaperCut servers linked to Cl0p and LockBit #ransomware (https://nitter.moomoo.me/search?q=%23ransomware) attacks.
Learn more about this campaign: thehackernews.com/2023/04/mi… (https://thehackernews.com/2023/04/microsoft-confirms-papercut-servers.html)
Threat actor Lace Tempest identified as the main culprit, overlapping with FIN11, TA505, and Evil Corp
https://nitter.moomoo.me/pic/card_img%2F1651501652354949123%2F0qX_YX9D%3Fformat%3Dpng%26name%3D800x419
https://nitter.moomoo.me/TheHackersNews/status/1651502021357236225#m