Medusa

Medusa Ransomware Turning Your Files into Stone - Unit 42 Threat Intelligence analysts have noticed an escalation in Medusa ransomware activities and a shift in tactics toward extortion, characterized by the introduction in early 2023 of their dedicated leak site called the Medusa Blog. The Unit 42 ...
1 year ago Unit42.paloaltonetworks.com Medusa

Medusa Ransomware Attacks Grown By 42% With New Tools & Techniques - Following the pattern of most modern ransomware operators, Spearwing and its affiliates implement double extortion attacks, first stealing victims’ data before encrypting networks to increase pressure on victims to pay ransoms. In almost all ...
2 weeks ago Cybersecuritynews.com LockBit Medusa

300 Strikes: Fort Worth's Battle Against the Medusa Gang - In the wake of a cyberattack on Tarrant County Appraisal District in March, the Medusa ransomware gang has claimed responsibility for the hack and has threatened the public with the threat of leaking 218 GB of the stolen data unless the ransom of ...
11 months ago Cysecurity.news Medusa

Medusa Ransomware Unleashes New Tactics: Data Sale, Time Extension, and AI Threats - In the ever-evolving landscape of cyber threats, Medusa Ransomware has taken a bold step by launching a dedicated blog to publish victim details, offering a chilling one-click data sale for $10,000. This notorious group, distinct from Medusa Locker ...
1 year ago Cybersecurity-insiders.com Medusa

CISA: Medusa ransomware hit over 300 critical infrastructure orgs - Last month, CISA and the FBI issued another joint alert warning that victims from multiple industry sectors across over 70 countries, including critical infrastructure, have been breached in Ghost ransomware attacks. "As of February 2025, ...
2 weeks ago Bleepingcomputer.com Medusa

Medusa Ransomware Hacked 300+ Organizations Worldwide from Variety of Critical Infrastructure - In a particularly concerning development, FBI investigations uncovered instances where victims who paid the initial ransom were subsequently contacted by different Medusa actors claiming the first negotiator had stolen the payment, demanding an ...
2 weeks ago Cybersecuritynews.com Medusa

CISA: More than 300 critical infrastructure orgs attacked by Medusa ransomware | The Record from Recorded Future News - “FBI investigations identified that after paying the ransom, one victim was contacted by a separate Medusa actor who claimed the negotiator had stolen the ransom amount already paid and requested half of the payment be made again to provide the ...
2 weeks ago Therecord.media CVE-2024-1709 Medusa

Toyota confirms breach after Medusa ransomware threatens to leak data - Toyota Financial Services has confirmed that it detected unauthorized access on some of its systems in Europe and Africa after Medusa ransomware claimed an attack on the company. Toyota Financial Services, a subsidiary of Toyota Motor Corporation, is ...
1 year ago Bleepingcomputer.com LockBit Rhysida Medusa

CVE-2023-50258 - Medusa is an automatic video library manager for TV shows. Versions prior to 1.0.19 are vulnerable to unauthenticated blind server-side request forgery (SSRF). The `testDiscord` request handler in `medusa/server/web/home/handler.py` does not validate ...
1 year ago Medusa

CVE-2023-50259 - Medusa is an automatic video library manager for TV shows. Versions prior to 1.0.19 are vulnerable to unauthenticated blind server-side request forgery (SSRF). The `testslack` request handler in `medusa/server/web/home/handler.py` does not validate ...
1 year ago Medusa

Medusa cybercrime gang takes credit for another attack on US municipality - The Medusa ransomware group says it is responsible for an attack on a government agency in Texas. The Tarrant County Appraisal District - which determines property values for tax purposes in the Fort Worth area - confirmed to Recorded Future News two ...
11 months ago Therecord.media Medusa

Ransomware gang targets nonprofit providing clean water to world's poorest - Water for People, a nonprofit that aims to improve access to clean water for people whose health is threatened by a lack of it for drinking and sanitation, is the latest organization to have been hit by ransomware criminals. The ...
1 year ago Therecord.media Medusa

MEDUSA Ransomware Using Malicious ABYSSWORKER Driver to Disable EDR - Elastic Security Labs analysts noted that this driver is specifically designed to target and silence different EDR vendors, effectively removing a critical layer of defense against ransomware attacks. One particularly troubling aspect of the ...
1 week ago Cybersecuritynews.com Abyss Silence Medusa

Campbell County Schools hit by Medusa Ransomware Gang - Actor: medusa ...
1 year ago Twitter.com Medusa

ACCU Reference Medical Lab hit by Medusa Ransomware Gang - Actor: medusa ...
1 year ago Twitter.com Medusa

Sagent hit by Medusa Ransomware Gang - Actor: medusa ...
1 year ago Twitter.com Medusa

Bowden Barlow Law PA hit by Medusa Ransomware Gang - Actor: medusa ...
1 year ago Twitter.com Medusa

Rosens Diversified Inc hit by Medusa Ransomware Gang - Actor: medusa ...
1 year ago Twitter.com Medusa

Chetu hit by Medusa Ransomware Gang - Actor: medusa ...
1 year ago Twitter.com Medusa

Great Valley School District hit by Medusa Ransomware Gang - Actor: medusa ...
1 year ago Twitter.com Medusa

CENTRE D'AUTO P.R.N. SALABERRY IN hit by Medusa Ransomware Gang - Actor: medusa ...
1 year ago Twitter.com Medusa

McCray & Withrow hit by Medusa Ransomware Gang - Actor: medusa ...
1 year ago Twitter.com Medusa

Toyota Financial hit by Medusa Ransomware Gang - Actor: medusa ...
1 year ago Twitter.com Medusa

Moneris Solutions hit by Medusa Ransomware Gang - Actor: medusa ...
1 year ago Twitter.com Medusa

Hopewell Area School District hit by Medusa Ransomware Gang - Actor: medusa ...
1 year ago Twitter.com Medusa