Ransomware groups are reportedly utilizing the PrintNightmare vulnerabilities to gain access to Windows devices. Currently, the Magniber ransomware gang is the only known threat group exploiting the PrintNightmare vulnerability. Magniber has been active since October 2017, and while most of the current victims appear to be in South Korea, given the widespread use of Windows Print Spooler and challenges in mitigating, this is a threat to track. Based on their success, researchers at CrowdStrike estimate “that the PrintNightmare vulnerability coupled with the deployment of ransomware will likely continue to be exploited by other threat actors.” Read more at BleepingComputer.