The National Security Agency has advised iPhone and Android users to restart their phones regularly to protect against cyber threats. The FBI, CISA, and MS-ISAC have issued a joint cybersecurity advisory about the Medusa Ransomware, which utilizes a double extortion model to encrypt data and threaten to release it if a ransom is not paid. Organizations are encouraged to implement strong security measures such as using VPNs, multi-factor authentication, and keeping software up to date.
Medusa Ransomware has recently impacted over 300 victims through common techniques like phishing and was first identified in June 2021. The FBI warns that Medusa has shifted towards an affiliate model, where developers and affiliates employ the double extortion model. Affiliates are recruited in cybercriminal forums and marketplaces and use techniques like phishing campaigns and exploiting software vulnerabilities.
To protect against Medusa Ransomware threats, organizations should require VPNs or Jump Hosts for remote access, monitor for unauthorized scanning and access attempts, use long passwords, implement multi-factor authentication, keep all software up to date, have a recovery plan for data, segment networks, and use network monitoring tools to detect abnormal activity.
If any suspicious or criminal activity related to Medusa is observed, individuals should contact their local FBI field office or CISA’s Operations Center. State, Local, Tribal, and Territorial organizations should report incidents to MS-ISAC. These actions can help protect individuals and organizations from the threats posed by Medusa Ransomware.
Note: The image is for illustrative purposes only and is not the original image associated with the presented article. Due to copyright reasons, we are unable to use the original images. However, you can still enjoy the accurate and up-to-date content and information provided.
