Exploitation Timeline

Microsoft Links Medusa Affiliate to Exploits of Critical GoAnywhere Flaw

Microsoft’s findings tie the activity to Storm-1175, prompting immediate patching of internet‑exposed servers.