While cybercrimes are on the rise, there is a new alarming threat lurking around industrial sectors- Medusa.
Medusa is a cyber threat that uses phishing campaigns to steal credentials.
According to reports, Medusa’s attacks recently affected over 300 victims industry-wide, including technology, insurance, manufacturing, education, medical, and legal.
Medusa developers and affiliates execute ransomware attacks using a double extortion model. This involves encrypting victim data and threatening to release data publicly if a ransom is not paid. Medusa also operates a data leak site where you can see the list of victims plus their countdowns to the data spill.
The FBI and the U.S. Cybersecurity and Infrastructure Security Agency are trying to reduce incidents by circulating warnings about the ransomware scheme.
The good news is- there is a way to protect against ransomware. Officials advise patching operating systems, software, and firmware along with incorporating a multifactor authentication for all services. And this includes emails and VPNs.
Another way to avoid risks is to use long passwords and avoid frequently recurring password changes. The idea is not to weaken the security but to keep it high.
As brands are being pulled into the waves of technology, these threats are a reminder to tie loose ends and employ reliable cybersecurity systems.