JetBrains TeamCity is included in the Storm-1175 campaign’s exploitation chain via CVE-2024-27198 and CVE-2024-27199, both targeting the CI/CD platform’s authentication mechanisms. Patches are available in TeamCity 2023.11.4 and later. Organizations running internet-facing TeamCity instances should verify patch status and review access logs for indicators consistent with the campaign’s initial access patterns.