JetBrains TeamCity under attack by ransomware thugs after disclosure mess

Security researchers report active mass exploitation of JetBrains TeamCity vulnerabilities (CVE-2024-27198 and a related bug) leading to compromised CI/CD servers, creation of hundreds of attacker accounts (noted by eight-character random usernames), and deployment of a suspected modified Jasmin ransomware variant; ~1,182 exposed vulnerable TeamCity instances remain reachable on the internet, and operators are urged to apply patches immediately while the disclosure handling between Rapid7 and JetBrains has caused community debate.