Medusa Ransomware Actors Exploit Critical Fortra GoAnywhere Flaw
Researchers have identified that the Medusa ransomware actors are exploiting a critical vulnerability in Fortra's GoAnywhere software, specifically CVE-2025-10035. The exploitation process requires a private key, and there is uncertainty regarding how the Storm-1175 threat actors obtained it.