FBI warns against Cyberattack Medusa. How can the ohioan of scam be protected

The FBI, Cibersecurity and Infrastructure (CISA) security agency and the Multiple Information Center (MS-BISAC) warn online users about an increase. Cyberattack known as medusa ransomwarethat could be a threat to your data and security.

In the most recent consultativeFederal Cyber Security officials ask the public to be cautious against Medusa, a ransomware-as-service provider who has already affected over 300 people. Developers and affiliates Medusa called “Medusa Actors” use the malicious software in a “double extortion model”, where they take the sensitive public data of the victims and threaten to release it, if not paid.

Here’s what to know about federal consultancy and how to protect your personal information.

What is Medusa ransomware?

The first time identified in June 2021, Medusa Ransomware is a malicious software type or the ransomware-as-service orchestrated by developers, where they demand an redemption.

The FBI says that hundreds of victims have been affected in a number of industries, including medical, education, insurance, technology and production.

Medusa ransomware victims received 48 hours to get in touch

The “actors” Medusa (developers and affiliates) collect sensitive personal information (ie, details of the bank account, health records, social safety numbers) and threaten to issue it. According to the opinion, the redemption note asks the victims to make contact within 48 hours using a browser-based chat or an instant end-to-end messaging platform. If the victim does not respond to the redemption note, the Medusa actors will contact them directly by phone or E -mail.

The counselor adds that the redemption requirements are posted on the site, which also contains links to cryptocurrency wallets affiliated with Medusa. “At this stage, Medusa advertises the selling of the data to the stakeholders before the end of the couchometer the reverse count. The victims can pay in addition to $ 10,000 in the cryptocurrency to add a day to the count -count,” the consultancy shows.

How to protect yourself and stay safe from medusa ransomware

FBI, CISA and MS-BISAC have recommended some actions that people and organizations should take immediately to protect against Medusa ransomware threats US today:

Request VPNs or hosts for distance access.
Maintain all operating, software and firmware systems.
Request the multifactor authentication for all services to the possible, especially for Gmail and E -Email, virtual private networks and accounts that access critical systems.
Unauthorized scan and access test monitor.
Ask employees to use long passwords and consider not requiring frequent recurrent password changes that can weaken security.
Implement a recovery plan to maintain and retain multiple children’s data and servers in a separate, segmented and safe physical location (for example, hard drive, storage, cloud).
Segment networks to prevent the spread of ransomware.