Researchers spot Medusa ransomware operators deploying smuol.sys This driver mimics a legitimate CrowdStrike Falcon driver ...

RansomHub's EDRKillShifter used in 2024 ransomware by Medusa, BianLian, and Play, revealing cross-gang tool sharing.

Not all EDR killers are malware. Talos incident responders came across one legitimate software tool called HRSword in a ...

The FBI, CISA, and MS-ISAC have issued a joint cybersecurity advisory on the Medusa ransomware attacks impacting over 300 ...

Medusa ransomware uses ABYSSWORKER driver with stolen certificates to disable EDR and enable RDP access, risking data ...

Procedure of the Medusa hackers. The main route of infection for Medusa ransomware is targeted phishing campaigns.

A vicious ransomware called Medusa is picking up speed and a local cybersecurity expert has ways you can keep your data safe.

The FBI is warning users of popular email services such as Outlook and Gmail that they could be subject to cyberattacks by ...

The FBI and other federal authorities are warning healthcare organizations to safeguard against a ransomware group targeting the industry. The Medusa ransomware-as-a-service variant has been used to ...

A new dangerous ransomware variant has been spotted, capable of encrypting Windows devices, Linux, VMware, ESXi systems, and ...

A Medusa ransomware campaign is using a malicious driver to disrupt and even delete endpoint detection and response (EDR) ...

The FBI and the U.S. Cybersecurity and Infrastructure Security Agency are urging Gmail, Outlook and users of other popular ...