FBI Warns of Medusa, Ghost Ransomware Threats

The FBI, in conjunction with the Cybersecurity and Infrastructure Security Agency (CISA), has issued urgent warnings to Gmail and Microsoft Outlook users about the Medusa ransomware attack, which has targeted over 300 entities from critical infrastructure sectors since 2021. This ransomware employs a double extortion strategy, encrypting victims' data and threatening to release sensitive information unless ransoms, ranging from $100,000 to $15 million, are paid. Medusa exploits phishing emails and unpatched software vulnerabilities to infiltrate systems, prompting authorities to advise on measures such as enabling multifactor authentication (MFA), keeping software updated, and maintaining offline backups. Meanwhile, another ransomware group, dubbed 'Ghost,' is targeting small businesses by exploiting software vulnerabilities, further highlighting the increasing sophistication and frequency of cyberattacks. Authorities stress the importance of proactive cybersecurity practices, including regular system updates and use of MFA, to mitigate these threats.