The financially motivated cybercriminal threat actor Storm-1175 operates high-velocity ransomware campaigns that weaponize recently disclosed vulnerabilities to obtain initial access, exfiltrate data, and deploy Medusa ransomware (Gaze.exe). The post Storm-11…
Storm-1175 focuses gaze on vulnerable web-facing assets in high-tempo Medusa ransomware operations
Storm-1175 leverages recently disclosed vulnerabilities to deploy Medusa ransomware (Gaze.exe) in high-velocity attacks targeting exposed web-facing assets. The financially motivated threat actor exploits unpatched systems to gain initial access, exfiltrate data, and encrypt files. Organizations with internet-facing applications or services are at severe risk of operational disruption, financial loss, and data theft.