JetBrains TeamCity is included in the Storm-1175 Medusa ransomware campaign exploitation cluster, with CVE-2024-27198 and CVE-2024-27199 representing authentication bypass weaknesses in the CI/CD platform that provide initial access for ransomware staging. Exposure of TeamCity to the internet without patching represents a high-confidence ransomware entry point given the confirmed active campaign. Apply available JetBrains patches immediately and restrict TeamCity access to authorized internal or VPN-sourced IPs.