SmarterMail is targeted in the Storm-1175 Medusa ransomware campaign via CVE-2023-27351 and CVE-2023-27350, representing authentication bypass and remote code execution weaknesses in the mail server platform. Mail infrastructure is a persistent high-value target for ransomware actors seeking lateral movement and credential access. Verify patch status for both CVEs and restrict SmarterMail administrative interfaces from untrusted external IPs.