A public extortion claim tied to piraino.fr shows how ransomware crews increasingly lean on exposed web assets and remote-access weak spots, even when the underlying compromise is not yet confirmed.