Medusa is a ransomware-as-a-service provider first identified in June 2021, according to the advisory. As of February, Medusa has impacted over 300 victims from multiple critical infrastructure ...

Dubbed “Medusa,” the “ransomware-as-a-service” has affected more than 300 known people “from a variety of critical infrastructure sectors” since it was first discovered in 2021, ...

Medusa started as a closed ransomware variant, meaning that the same cybercriminals who develop the malware also carry out the attacks. But over time, it has transitioned to an affiliate model, ...

FBI, CISA issue warning about Medusa ransomware A blog post by security software brand, Symantec, identifies the group of cyber attackers as Spearwing, a group that initially became active in ...

Medusa "actors" (developers and affiliates) collect sensitive personal information (i.e., bank account details, health records, social security numbers) and threaten to release it.

Federal officials urge organizations to shore up cybersecurity as people continue falling victim to Medusa ransomware, which has racked up hundreds of victims across several industries since the ...