Sun Mar 16 00:20:00 UTC 2025: **FBI and CISA Warn of Dangerous Medusa Ransomware Attacking Hundreds**

Los Angeles, CA – The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) issued a joint warning on a rising ransomware threat, Medusa, which has impacted hundreds of victims across various sectors since February. Medusa, a ransomware-as-a-service operation active since 2021, employs phishing campaigns to steal credentials and deploy its encryption software.

The agencies advise users to update their systems with the latest patches and implement multi-factor authentication for all services. While strong, unique passwords are recommended, frequent password changes are discouraged as they can weaken security.

Medusa utilizes a “double extortion” tactic, encrypting victim data and threatening to publicly release stolen information unless a ransom is paid. Victims’ data, along with countdown timers to public release, is displayed on a dedicated data leak site. Victims can even pay $10,000 in cryptocurrency to postpone the leak by a day. The ransomware operators also sell the stolen data to third parties.

The attack has targeted over 300 victims across diverse industries, including medical, education, legal, insurance, technology, and manufacturing. The agencies urge individuals and organizations to take immediate action to strengthen their cybersecurity posture to mitigate the risk of infection.

Read More