Search all coverage

Threat actor

Storm-1175

Tracked by CyberSIXT since Apr 6, 2026 · last activity Apr 7, 2026

Associated CVEs

CVE-2025-10035KEV CVE-2026-1731KEV CVE-2024-27198KEV CVE-2025-31161KEV CVE-2026-23760KEV CVE-2023-21529KEV CVE-2023-27351KEV CVE-2023-46805KEV

Coverage timeline

Storm-1175 Deploys Medusa Ransomware at 'High Velocity'
www.darkreading.com · Apr 7, 2026
China-linked Storm-1175 deploys Medusa ransomware within 24h
securityaffairs.com · Apr 7, 2026
Storm-1175 Exploits Flaws in High-Velocity Medusa Attacks
www.infosecurity-magazine.com · Apr 7, 2026
China linked Medusa gang uses zero days to hit UK health, finance
thehackernews.com · Apr 7, 2026
Microsoft links Medusa ransomware affiliate to zero-day attacks
databreaches.net · Apr 6, 2026
Storm-1175 hackers use fresh flaws to drop Medusa ransomware
www.microsoft.com · Apr 6, 2026