FBI Warns Gmail and Microsoft Outlook Users of Medusa Ransomware Threat
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have issued a critical warning to users of Gmail and Microsoft Outlook regarding the threat of Medusa ransomware.
According to recent announcements, the US government agencies have highlighted Medusa, a ransomware-as-a-service software that has been active since 2021 and has recently impacted a significant number of individuals. CISA reports that Medusa primarily uses phishing campaigns as its primary attack vector, targeting victims’ credentials.
To protect against Medusa ransomware and other malicious attacks, the FBI and CISA recommend the following actions for users:
- Update Systems: Patch operating systems and keep all devices updated promptly.
- Multi-Factor Authentication: Enable multi-factor authentication for email, VPNs, and any other relevant services.
- Strong Passwords: Implement strong and unique passwords.
- Avoid Password Reuse: Refrain from reusing passwords across multiple accounts.
Medusa Ransomware Tactics and Impact
Medusa developers and their affiliates, often referred to as “Medusa actors,” are known to employ a double extortion strategy. They encrypt victims’ data and threaten to release sensitive information if a ransom isn’t paid. As stated in an advisory by AP, Medusa operates a data-leak site that lists victims with countdown timers before the potential release of stolen data.
”Ransom demands are posted on the site, with direct hyperlinks to Medusa-affiliated cryptocurrency wallets. At this stage, Medusa concurrently advertises the sale of the data to interested parties before the countdown timer ends. Victims can additionally pay $10,000 in cryptocurrency to add a day to the countdown timer,” the advisory noted.
CISA also noted that Medusa actors have been targeting various industries, including healthcare, education, legal, insurance, technology, and manufacturing. Since last month, Medusa actors have targeted over 300 victims.
Other Cyber Threats on the Rise
In addition to the Medusa ransomware warning, the FBI has also cautioned about a surge in “smishing” attacks aimed at iPhone and Android users. These scams use fraudulent text messages to steal personal and financial data. Cybercriminals have registered over 10,000 domains, leading to a fourfold increase in attacks since January 2025, posing a significant risk of identity theft and fraud.
Conclusion
With cyber threats evolving rapidly, it’s crucial for users to remain vigilant and proactive in their security measures. By following the FBI and CISA’s recommendations, users can significantly reduce their risk of falling victim to ransomware and other cyberattacks.
