A Russian-speaking ransomware group has been deploying a malicious Windows PE driver that imitates a legitimate CrowdStrike ...

Medusa ransomware now operates as a RaaS model, recruiting affiliates from criminal forums to launch attacks, encrypt data, ...

Use precise geolocation data and actively scan device characteristics for identification. This is done to store and access ...

The Medusa ransomware relies on a malicious Windows driver to disable the security tools running on the infected systems.

A Medusa ransomware campaign is using a malicious driver to disrupt and even delete endpoint detection and response (EDR) ...

Federal authorities have issued a new warning about a dangerous ransomware scheme that is sweeping across the country. It ...

Government officials sounded the alarm over the growing threat of ransomware attacks. The FBI and U.S. Cybersecurity and ...

The advisory is part of CISA's ongoing #StopRansomware initiative, which flags ransomware variants and threat actors, as well as their observed tactics, techniques, and procedures. Medusa is a ...

Medusa ransomware uses ABYSSWORKER driver with stolen certificates to disable EDR and enable RDP access, risking data ...

The FBI, CISA, and MS-ISAC have issued a joint cybersecurity advisory on the Medusa ransomware attacks impacting over 300 critical infrastructure organizations.

The FBI is warning users of popular email services such as Outlook and Gmail that they could be subject to cyberattacks by ...