The Medusa ransomware group has reportedly launched a major cyberattack on the National Association for Stock Car Auto Racing (NASCAR), demanding a $4 million ransom to prevent the release of sensitive data. The Medusa ransomware group operates under a ransomware-as-a-service (RaaS) model and is known for its double extortion tactics—encrypting victim data while threatening to release stolen information publicly if demands are unmet. Medusa claims to have exfiltrated extensive data from NASCAR’s systems, including employee names, email addresses, phone numbers, sponsorship agreements, invoices, and detailed maps of racetrack grounds. The group has issued an ultimatum: NASCAR must pay the ransom by April 19, 2025, or face the public release of its stolen data. Notably, Medusa previously attacked Minneapolis Public Schools in 2023 and released sensitive student data after a $1 million ransom demand went unpaid. The breach, revealed on Medusa’s dark web leak site on April 8, 2025, allegedly involves the theft of over one terabyte (1,038.70 GB) of internal files, including operational, financial, and personal information. Federal agencies such as the FBI and CISA have issued warnings about ransomware threats in recent months, urging organizations to adopt robust defenses like multi-factor authentication and regular software updates. Cyber Security News is a Dedicated News Platform For Cyber News, Cyber Attack News, Hacking News & Vulnerability Analysis. Whether through negotiation or enhanced cybersecurity measures, the organization faces significant challenges in safeguarding its operations and reputation against this growing cyber threat.
This Cyber News was published on cybersecuritynews.com. Publication date: Mon, 14 Apr 2025 09:30:28 +0000