FBI Warning—Gmail, Outlook And VPN Users Need To Act Now
The Federal Bureau of Investigation (FBI) has issued a warning to Gmail, Outlook, and VPN users about the ongoing Medusa ransomware attacks and the urgent mitigation advice issued as a result. The warning comes as part of a joint alert with the U.S. Cybersecurity and Infrastructure Security Agency (CISA), which aims to protect critical infrastructure entities from these highly sophisticated threats.
Medusa Ransomware: A Highly Dangerous Campaign
Medusa, a highly dangerous ransomware-as-a-service provider, has been impacting at least 300 victims from the critical infrastructure sector since its campaign was first observed in June 2021. Known for its multi-faceted and far-reaching impacts on various industries, Medusa is an apt name for this attack, considering its ability to exploit vulnerabilities and gain leverage to extort organizations.
The FBI and CISA have warned that deploying software patches, network segmentation, and blocking access to services from unknown or untrusted sources can help improve operational resilience. Adopting an assumed breach position might also be beneficial, as it shifts the focus from preventing breaches to detecting, responding, and recovering quickly.
Targeted Attacks on Identity Systems
According to Roger Grimes, a data-driven defence evangelist at KnowBe4, social engineering is involved in 70% - 90% of all successful hacking attacks. However, the official alert does not mention security awareness training as a primary way to defeat it.
Don't Pay The Ransom
The FBI has previously warned that victims of ransomware should not pay the ransom demanded. A recent ransomware analysis from Semperis revealed that most ransomware attacks are not a one-time thing, with 75% of organizations being attacked multiple times in the past 12 months.
Free Online Document Converter Scam
The FBI Denver Field Office has issued a warning to all users of a newly discovered scam campaign that involves the use of free online document converter tools that actually end up leading to ransomware attacks. The best way to thwart these fraudsters is to educate people so they don’t fall victim to these fraudsters in the first place.
Additional Threats
The FBI Denver Field Office has also warned of more ransomware threats, including the use of free online document converter tools that lead to attacks. It is essential for users to be vigilant and educate themselves on how to avoid falling victim to these scams.
Frequently Asked Questions
Q: What should I do if my organization has been or will be compromised by Medusa?
A: Adopting an assumed breach position might be beneficial, as it shifts the focus from preventing breaches to detecting, responding, and recovering quickly.
Q: Can I pay a ransom and expect to recover my data?
A: No, paying ransoms does not guarantee a return to normal business operations. According to the in-house analysis of data, 35% of victims who paid a ransom either did not receive decryption keys or received corrupted keys.
Q: What can I do to protect myself from these threats?
A: The best way to thwart these fraudsters is to educate people so they don’t fall victim to these fraudsters in the first place. Only use tools from reputable sites and services, and be vigilant when using free online document converter tools.