A joint Cybersecurity Advisory has been released by the FBI and CISA in response to an active exploitation of CVE-2023-27350. This vulnerability affects certain versions of PaperCut NG and PaperCut MF, which are software applications designed to help organizations manage printing services. The vulnerability allows an unauthenticated actor to remotely execute malicious code without the need for credentials.

The Cybersecurity Advisory provides technical details on the vulnerability, along with recommended mitigations. PaperCut has also issued an urgent vulnerability bulletin in March 2023, and Huntress has published a blog on the critical vulnerabilities in PaperCut software.

To help organizations secure their infrastructure, CISA offers no-cost Cyber Hygiene Services and a Ransomware Readiness Assessment. Additionally, CISA has released Mitigations and Hardening Guidance for MSPs and Small- and Mid-sized Businesses. This guidance contains recommendations on how to improve the security of MSP and customer infrastructure.

Organizations in the U.S. Defense Industrial Base (DIB) sector may consider enrolling in the NSA Cybersecurity Collaboration Center’s DIB Cybersecurity Service Offerings. These services include Protective Domain Name System services, vulnerability scanning, and threat intelligence collaboration for eligible organizations. To enroll in these services, organizations can email dib_defense@cyber.nsa.gov.

To report incidents and anomalous activity related to these threats, organizations can contact CISA at report@cisa.gov. They can also call (888) 282-0870 or report incidents to their local FBI field office. These resources are available to help organizations effectively respond to the threat posed by CVE-2023-27350.

It is essential for organizations to take immediate action to reduce the risk of exploitation of this vulnerability. The recommended mitigations provided by CISA include applying the latest software updates, disabling unused features, monitoring the network for unusual activity, and restricting access to the software to authorized users only.

In conclusion, the joint Cybersecurity Advisory released by the FBI and CISA highlights the danger posed by the exploitation of CVE-2023-27350. The vulnerability affects PaperCut NG and PaperCut MF software applications used for managing printing services. CISA is providing guidance on mitigations to help organizations protect themselves from the risk of exploitation. Organizations should act quickly to reduce their exposure to this vulnerability and adopt the recommended mitigations to stay safe from this threat.

Source link