Procedure of the Medusa hackers. The main route of infection for Medusa ransomware is targeted phishing campaigns.
RansomHub's EDRKillShifter used in 2024 ransomware by Medusa, BianLian, and Play, revealing cross-gang tool sharing.
Federal authorities have issued a new warning about a dangerous ransomware scheme that is sweeping across the country. It ...
The Medusa ransomware relies on a malicious Windows driver to disable the security tools running on the infected systems.
Medusa ransomware uses ABYSSWORKER driver with stolen certificates to disable EDR and enable RDP access, risking data ...
ESET uncovers a link between RansomHub, Play, Medusa, and BianLian ransomware gangs as more groups adopt tools to disable EDR software.
Ransomware actors are increasingly abusing vulnerable drivers to craft tools known as "EDR killers," which can disrupt and ...
Researchers spot Medusa ransomware operators deploying smuol.sys This driver mimics a legitimate CrowdStrike Falcon driver ...
MEDUSA WAS A GREEK PRIESTESS WHO HAD SNAKES FOR HAIR, SEEN HERE IN A MARBLE BUST. THIS RANSOMWARE WE’RE TALKING ABOUT NOW IS CALLED MEDUSA BECAUSE IT SNAKES ITS WAY THROUGH THE COMPUTER NETWORKS ...
ESET researchers discover new ties between affiliates of RansomHub and of rival gangs Medusa, BianLian, and Play.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback