JAKARTA - The US Cyber and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have issued a warning to users of email services such as Gmail and Outlook regarding the reactivated Medusa ransomware threat.
Since it was first detected in June 2021, Medusa has infected more than 300 organizations in critical infrastructure sectors worldwide, including the medical, manufacturing, and technology industries.
🛡️ Medusa ransomware is on the rise across #CriticalInfrastructure sectors. Protect your data by applying patch updates, segmenting networks, and filtering network traffic. Learn more in our joint guide with @FBI & @CISecurity (MS-ISAC) 👉 https://t.co/XVvhJhAPkq #StopRansomware pic.twitter.com/7ahuaXV6Vh
— CISA Cyber (@CISACyber) March 12, 2025
Medusa Modus Operandi
Medusa operates as a ransomware-as-a-service (RaaS), where its developers recruit affiliates from criminal forums to launch attacks, encrypt data, and extort victims worldwide.
These attacks often begin with phishing emails or text messages designed to steal user credentials or exploit unpatched software vulnerabilities. Once it successfully infects a system, Medusa encrypts the victim’s data and demands a ransom in the form of cryptocurrency.
SEE ALSO:
-
| TEKNOLOGI
Balap Chrome, Microsoft Edge Luncurkan Ekstensi untuk Pengguna Android
19 Maret 2025, 18:05
Prevention Steps
To protect yourself from the Medusa ransomware threat, CISA and the FBI recommend the following steps:
- Use strong, unique passwords: Make sure each account has a different, complex password to prevent unauthorized access.
- Enable multi-factor authentication (MFA): MFA adds an extra layer of security by requiring additional verification in addition to the password.
- Update software regularly: Make sure all software and operating systems are updated to close vulnerabilities that could be exploited by attackers.
- Be wary of suspicious emails or messages: Avoid clicking on links or opening attachments from unknown or suspicious senders.
- Back up data regularly: Keep copies of important data in a separate location to ensure recovery in the event of an attack.
By following these preventive measures, users can reduce their risk of falling victim to Medusa ransomware and protect their data and systems from cyber threats.
The English, Chinese, Japanese, Arabic, and French versions are automatically generated by the AI. So there may still be inaccuracies in translating, please always see Indonesian as our main language. (system supported by DigitalSiber.id)
