PaperCut Software Company Cyber Security Posture
papercut.comPaperCut was founded on a single question: How can we put an end to piles of wasted paper sitting in printer trays? Now, weโre joined by more than 125 million users โ across all 195 countries and 85,000+ organizations โ all crafting better environments one print job at a time. In a nutshell, our print management software inspires earth- and dollar-saving behavior by giving you powerful visibility and control over who prints what (and how much). Itโs led to the wider PaperCut team saving over 750 million sheets of paper to date โ thatโs like 80,000 trees! It also makes your day-to-day a lot easier. After all, what really sets our solutions apart is how simple they are to install and use โ no matter your size, your printers, or the devices and operating systems your users bring to the table. Everything just works. But great software without the people to match is like a printer without paper. Thatโs why weโve spent over 20 years building strong relationships lasting just as long โ including our first ever customer, reseller, and employee โ while fostering a global support network second to none. So next time you print, be sure to ask yourself: Could you be printing better with PaperCut?
PaperCut Software Company Details
papercut-software
265 employees
21317.0
511
Software Development
papercut.com
Scan still pending
PAP_2212008
In-progress
PaperCut Software Risk Score (AI oriented)Between 900 and 1000
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
PaperCut Software Global Score.png)
PaperCut Software Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 900 and 1000 |
PaperCut Software Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| PaperCut NG/MF | Vulnerability | 25 | 1 | 7/2025 | PAP906072925 | Link | |
Rankiteo Explanation : Attack without any consequencesDescription: CISA warns of a high-severity vulnerability in PaperCut NG/MF print management software that allows threat actors to gain remote code execution through cross-site request forgery (CSRF) attacks. The flaw, tracked as CVE-2023-2533, was patched in June 2023. Successful exploitation requires tricking an admin into clicking a maliciously crafted link. The vulnerability has been added to CISA's Known Exploited Vulnerabilities Catalog, mandating federal agencies to patch systems by August 18. CISA encourages all organizations to prioritize patching. Shadowserver tracks over 1,100 exposed PaperCut servers, though not all are vulnerable to CVE-2023-2533. Previous vulnerabilities (CVEโ2023โ27350 and CVEโ2023โ27351) were exploited by ransomware gangs, including LockBit and Clop, and Iranian state-backed groups. | |||||||
| PaperCut | Vulnerability | 50 | 2 | 7/2025 | PAP242072925 | Link | |
Rankiteo Explanation : Attack limited on finance or reputationDescription: CISA has issued an urgent warning regarding a critical vulnerability in PaperCut NG/MF print management software that threat actors are actively exploiting in ransomware campaigns. The vulnerability, tracked as CVE-2023-2533, represents a significant security risk to organizations worldwide using the affected software versions. This security flaw, categorized under CWE-352, allows attackers to potentially alter security settings and execute arbitrary code on vulnerable systems under specific conditions. The vulnerabilityโs severity stems from its ability to enable remote code execution (RCE), making it an attractive target for cybercriminals seeking to establish persistent access to enterprise networks. | |||||||
PaperCut Software Company Subsidiaries
PaperCut was founded on a single question: How can we put an end to piles of wasted paper sitting in printer trays? Now, weโre joined by more than 125 million users โ across all 195 countries and 85,000+ organizations โ all crafting better environments one print job at a time. In a nutshell, our print management software inspires earth- and dollar-saving behavior by giving you powerful visibility and control over who prints what (and how much). Itโs led to the wider PaperCut team saving over 750 million sheets of paper to date โ thatโs like 80,000 trees! It also makes your day-to-day a lot easier. After all, what really sets our solutions apart is how simple they are to install and use โ no matter your size, your printers, or the devices and operating systems your users bring to the table. Everything just works. But great software without the people to match is like a printer without paper. Thatโs why weโve spent over 20 years building strong relationships lasting just as long โ including our first ever customer, reseller, and employee โ while fostering a global support network second to none. So next time you print, be sure to ask yourself: Could you be printing better with PaperCut?
Access Data Using Our API
Get company history
Rapid.png)
PaperCut Software Cyber Security News
CISA Adds PaperCut NG/MF CSRF Vulnerability to KEV Catalog Amid Active Exploitation
PaperCut NG/MF is commonly used by schools, businesses, and government offices to manage print jobs and control network printers. Because theย ...
U.S. CISA adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog
Cybersecurity and Infrastructure Security Agency (CISA) adds Cisco ISE and PaperCut NG/MF flaws to its Known Exploited Vulnerabilities catalog.
CISA Issues Alert on PaperCut RCE Vulnerability Under Active Exploitation
CISA has added a critical PaperCut vulnerability to its Known Exploited Vulnerabilities (KEV) catalog, warning organizations of activeย ...
PaperCut actively exploited by multiple threat actors, targeting education sector
A ransomware group identifying itself as Bl00dy Ransomware Gang attempted to exploit vulnerable PaperCut servers against the educationย ...
CEO of cybersecurity firm charged with installing malware on hospital systems
Jeffrey Bowie, CEO of the cybersecurity firm Veritaco, is facing two counts of violating Oklahoma's Computer Crimes Act for allegedly infectingย ...
PaperCut says hackers are exploiting โcriticalโ security flaws in unpatched servers
Print management software maker PaperCut says attackers are exploiting a critical-rated security vulnerability to gain access to unpatchedย ...
Attackers Abuse PaperCut RCE Flaws to Take Over Enterprise Print Servers
Researchers have revealed new details about how attackers are exploiting two flaws in the PaperCut enterprise print management system.
CISA flags PaperCut RCE bug as exploited in attacks, patch now
CISA warns that threat actors are exploiting a high-severity vulnerability in PaperCut NG/MF print management software, which can allow themย ...
PaperCut Vulnerability: Unpatched Servers Exploited in the Wild
Uncovering Vulnerability Details: The PaperCut is prone to two significant security flaws โ one is troublesome, and the other is genuinelyย ...
PaperCut Software Similar Companies
Cadence
Cadence is a pivotal leader in electronics and system design, building upon more than 30 years of computational software expertise. The company applies its underlying Intelligent System Design strategy to deliver software, hardware and IP that turn design concepts into reality. Cadence customers are
HubSpot
HubSpot is a leading CRM platform that provides software and support to help businesses grow better. Our platform includes marketing, sales, service, and website management products that start free and scale to meet our customersโ needs at any stage of growth. Today, thousands of customers around th
CPAN
CPAN, the Comprehensive Perl Archive Network, is an archive of software written in Perl containing over 134,000 modules in over 29,700 distributions, as well as documentation for it. It has a presence on the World Wide Web at www.cpan.org and is mirrored world The Comprehensive Perl Archive Network
Atlassian
Atlassian powers the collaboration that helps teams accomplish what would otherwise be impossible alone. From space missions and motor racing to bugs in code and IT requests, no task is too large or too small with the right team, the right tools, and the right practices. Over 300,000 global compa
PayPal
We're championing possibilities for all by making money fast, easy, and more enjoyable. Our hope is to unlock opportunities for people in their everyday lives and empower the millions of people and businesses around the world who trust, rely upon, and use PayPal every day. For support, visit the P
Just Eat Takeaway.com
Just Eat Takeโawayโ.com is a leadยญing globยญal online delivยญery marยญketยญplace, conยญnectยญing conยญsumers and restauยญrants through our platยญform in 17 counยญtries. Like a dinner table, working at JET brings our office employees and couriers together. From coding to customer service to couriers, JET is a
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
PaperCut Software CyberSecurity History Information
How many cyber incidents has PaperCut Software faced?
Total Incidents: According to Rankiteo, PaperCut Software has faced 2 incidents in the past.
What types of cybersecurity incidents have occurred at PaperCut Software?
Incident Types: The types of cybersecurity incidents that have occurred incidents Vulnerability.
How does PaperCut Software detect and respond to cybersecurity incidents?
Detection and Response: The company detects and responds to cybersecurity incidents through containment measures with Apply vendor patches, Monitor PaperCut systems for threats and remediation measures with Network segmentation around print management systems and network segmentation with Implement network segmentation around print management systems and enhanced monitoring with Monitor for suspicious activities targeting PaperCut installations and remediation measures with Patching the vulnerability.
Incident Details
Can you provide details on each incident?
Incident : Vulnerability Exploitation
Title: Critical Vulnerability in PaperCut NG/MF Print Management Software
Description: CISA has issued an urgent warning regarding a critical vulnerability in PaperCut NG/MF print management software that threat actors are actively exploiting in ransomware campaigns.
Date Detected: 2025-07-28
Type: Vulnerability Exploitation
Attack Vector: Cross-Site Request Forgery (CSRF)
Vulnerability Exploited: CVE-2023-2533
Motivation: Remote Code Execution (RCE)
Incident : Vulnerability Exploitation
Title: Exploitation of High-Severity Vulnerability in PaperCut NG/MF Software
Description: CISA warns that threat actors are exploiting a high-severity vulnerability in PaperCut NG/MF print management software, which can allow them to gain remote code execution in cross-site request forgery (CSRF) attacks. The software developer says that more than 100 million users use its products across over 70,000 organizations worldwide. The security flaw (tracked as CVE-2023-2533 and patched in June 2023) can allow an attacker to alter security settings or execute arbitrary code if the target is an admin with a current login session, and successful exploitation typically requires tricking an admin into clicking a maliciously crafted link.
Type: Vulnerability Exploitation
Attack Vector: Cross-Site Request Forgery (CSRF)
Vulnerability Exploited: CVE-2023-2533
Motivation: Remote Code Execution
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Vulnerability.
How does the company identify the attack vectors used in incidents?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through CVE-2023-2533.
Impact of the Incidents
What was the impact of each incident?
Incident : Vulnerability Exploitation PAP242072925
Systems Affected: PaperCut NG/MF print management systems
Which entities were affected by each incident?
Incident : Vulnerability Exploitation PAP242072925
Entity Type: Software Vendor
Industry: Print Management
Incident : Vulnerability Exploitation PAP906072925
Entity Type: Software Developer
Industry: Print Management Software
Size: 100 million users across 70,000 organizations
Response to the Incidents
What measures were taken in response to each incident?
Incident : Vulnerability Exploitation PAP242072925
Containment Measures: Apply vendor patches, Monitor PaperCut systems for threats
Remediation Measures: Network segmentation around print management systems
Network Segmentation: Implement network segmentation around print management systems
Enhanced Monitoring: Monitor for suspicious activities targeting PaperCut installations
Incident : Vulnerability Exploitation PAP906072925
Remediation Measures: Patching the vulnerability
Data Breach Information
What measures does the company take to prevent data exfiltration?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Network segmentation around print management systems, Patching the vulnerability.
How does the company handle incidents involving personally identifiable information (PII)?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through were Apply vendor patches and Monitor PaperCut systems for threats.
Lessons Learned and Recommendations
What recommendations were made to prevent future incidents?
Incident : Vulnerability Exploitation PAP242072925
Recommendations: Immediately apply vendor patches, Monitor PaperCut systems for threats, Implement network segmentation around print management systems
Incident : Vulnerability Exploitation PAP906072925
Recommendations: Prioritize patching this actively exploited security bug as soon as possible.
What recommendations has the company implemented to improve cybersecurity?
Implemented Recommendations: The company has implemented the following recommendations to improve cybersecurity: Immediately apply vendor patches, Monitor PaperCut systems for threats, Implement network segmentation around print management systemsPrioritize patching this actively exploited security bug as soon as possible..
References
Where can I find more information about each incident?
Incident : Vulnerability Exploitation PAP242072925
Source: CISA
Incident : Vulnerability Exploitation PAP906072925
Source: CISA
Where can stakeholders find additional resources on cybersecurity best practices?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: CISA, and Source: CISA.
Initial Access Broker
How did the initial access broker gain entry for each incident?
Incident : Vulnerability Exploitation PAP906072925
Entry Point: CVE-2023-2533
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident?
Incident : Vulnerability Exploitation PAP242072925
Root Causes: CVE-2023-2533
Corrective Actions: Apply vendor patches, Monitor PaperCut systems for threats, Implement network segmentation around print management systems
Incident : Vulnerability Exploitation PAP906072925
Root Causes: High-severity vulnerability in PaperCut NG/MF software
Corrective Actions: Patching the vulnerability
What is the company's process for conducting post-incident analysis?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Monitor for suspicious activities targeting PaperCut installations.
What corrective actions has the company taken based on post-incident analysis?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Apply vendor patches, Monitor PaperCut systems for threats, Implement network segmentation around print management systems, Patching the vulnerability.
Additional Questions
Incident Details
What was the most recent incident detected?
Most Recent Incident Detected: The most recent incident detected was on 2025-07-28.
Impact of the Incidents
What was the most significant system affected in an incident?
Most Significant System Affected: The most significant system affected in an incident was PaperCut NG/MF print management systems.
Response to the Incidents
What containment measures were taken in the most recent incident?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident were Apply vendor patches and Monitor PaperCut systems for threats.
Lessons Learned and Recommendations
What was the most significant recommendation implemented to improve cybersecurity?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Immediately apply vendor patches, Monitor PaperCut systems for threats, Implement network segmentation around print management systems, Prioritize patching this actively exploited security bug as soon as possible..
References
What is the most recent source of information about an incident?
Most Recent Source: The most recent source of information about an incident are CISA and CISA.
Initial Access Broker
What was the most recent entry point used by an initial access broker?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an CVE-2023-2533.
Post-Incident Analysis
What was the most significant root cause identified in post-incident analysis?
Most Significant Root Cause: The most significant root cause identified in post-incident analysis was CVE-2023-2533, High-severity vulnerability in PaperCut NG/MF software.
What was the most significant corrective action taken based on post-incident analysis?
Most Significant Corrective Action: The most significant corrective action taken based on post-incident analysis was Apply vendor patches, Monitor PaperCut systems for threats, Implement network segmentation around print management systems, Patching the vulnerability.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
