← Back to Tracker
critical Code Vulnerability

Storm-1175 (China) Deploying Medusa Ransomware via Zero-Days

Severitycritical
Statusopen
DateApril 7, 2026
AffectsHealthcare, education, professional services, finance — US, UK, Australia
Sourcethehackernews.com

Details

China-linked Storm-1175 chaining zero-days and N-days for high-velocity attacks — initial compromise to ransomware deployment within 24 hours. Exploited GoAnywhere MFT CVE-2025-10035 (max severity) and CVE-2026-23760 as zero-days before public disclosure. Since 2023, the group has exploited 16+ vulnerabilities.

Read full advisory →