In its remediation, MOVEit’s developers disclosed not only the zero-day developed by the Cl0p group, but also other zero-day vulnerabilities that were found in the investigation. Nothing guarantees that threat actors had not also previously found those weaknesses or others yet to be discovered...