Law enforcement agencies like the FBI and CISA have issued a warning about Medusa ransomware, a serious threat to various sectors. Operating since mid-2021, this ransomware follows a double extortion model: it encrypts victims' data and threatens to either publicize or sell it unless a ransom, which can be as high as $1 million, is paid. Medusa has affected over 300 victims across critical infrastructure sectors such as medical, education, and technology. The ransomware is largely distributed through phishing campaigns, emphasizing the need for robust cybersecurity measures.
Medusa ransomware is a specific type of ransomware that is currently making the rounds, utilizing a double extortion model which both encrypts and threatens to release data.
According to a cybersecurity advisory, Medusa has impacted over 300 victims from various critical infrastructure sectors including medical, education, and legal.
The ransomware payments can range anywhere between $100 to $1 million, with users needing to pay ransoms to regain access or prevent data dissemination.
The CISA advisory emphasizes that Medusa is primarily spread through phishing campaigns, highlighting the importance of maintaining vigilance against such threats.
Collection
[
|
...
]