Cybersecurity officials warn against potentially costly Medusa ransomware attacks
The FBI and the U.S. Cybersecurity and Infrastructure Security Agency are warning against a dangerous ransomware scheme.
In an advisory posted earlier this week, government officials warned that a ransomware-as-a-service software called Medusa, which has launched ransomware attacks since 2021, has recently affected hundreds of people. Medusa uses phishing campaigns as its main method for stealing victims' credentials, according to CISA.
To protect against the ransomware, officials recommended patching operating systems, software and firmware, in addition to using multifactor authentication for all services such as email and VPNs. Experts also recommended using long passwords, and warned against frequently recurring password changes because they can weaken security.
Medusa developers and affiliates — called 'Medusa actors' — use a double extortion model, where they 'encrypt victim data and threaten to publicly release exfiltrated data if a ransom is not paid,' the advisory said. Medusa operates a data-leak site that shows victims alongside countdowns to the release of information.
'Ransom demands are posted on the site, with direct hyperlinks to Medusa affiliated cryptocurrency wallets,' the advisory said. 'At this stage, Medusa concurrently advertises sale of the data to interested parties before the countdown timer ends. Victims can additionally pay $10,000 USD in cryptocurrency to add a day to the countdown timer.'
Since February, Medusa developers and affiliates have hit more than 300 victims across industries, including the medical, education, legal, insurance, technology and manufacturing sectors, CISA said.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
The Independent
4 hours ago
- The Independent
ICE is using a government database to identify people who can easily be deported
ICE agents are reportedly using a new mapping app to track down migrants living illegally in the U.S who can be easily deported to meet Donald Trump's aggressive quotas. The app, an early version of which was known as Alien Tracker or ATRAC, allows agents and officers to view areas around the country with higher concentrations of people under deportation orders, making them more vulnerable to detention. Information about more than 700,000 individuals is recorded on the app and is available in a 'baseball-card-style format,' according to documents obtained by The New York Times. The Times reports that the app was launched with the help of Elon Musk and DOGE, before the billionaire's exit from the department late last month. According to documents seen by the outlet and accounts from ICE officials in Florida, the app also allows officers to identify immigrants with criminal convictions, further increasing the chances of a swift removal. 'The heat map shows where there are executable final orders of removal around the nation. And that officer then can just zoom in on those areas,' Garrett Ripa, head of the Miami ICE office, told The Times. To increase its reach, the tracker reportedly draws on data from multiple government agencies, including the FBI, the Bureau of Alcohol, Tobacco, Firearms and Explosives, the U.S. Marshals Service, and the Social Security Administration. The agency reportedly plans for the tracker to ultimately consolidate data from all interior agencies, including housing and labor departments, the Human Services Department and the IRS. It comes as the administration continues to push forward with its aggressive targets, spearheaded by senior White House advisor Stephen Miller. Miller, the architect of Trump's anti-immigration agenda, pushed ICE officials to ramp up arrests after falling short of the president's ambitions for record-breaking daily deportations, according to a recent report in The Wall Street Journal. More than 200,000 people in the U.S. without authorization have been sent back to their home country, according to internal government data obtained by The Times. Miller told Fox News late last month that ICE would set a goal of a 'minimum' of 3,000 arrests a day. He reportedly asked top ICE officials last month if they believed it was possible to reach one million deportations by the end of the year, according to people with knowledge of the meeting. To achieve this, he told law enforcement to 'just go out there and arrest illegal aliens,' per the WSJ, adding that he had told agents to target Home Depot parking lots and 7-Eleven convenience stores to find suspects. It was these instructions that reportedly lit the fuse for the raids in Los Angeles County, which have since devolved into violent clashes between demonstrators and police – and prompted Trump to summon 4,000 members of the state national guard. Alongside stakeouts of clubs, restaurants and other community hubs, internal administration documents reviewed by The Washington Post instructed ICE agents in more than 20 states to arrest people at courthouses, immediately after their cases are dismissed by a judge, or if they are given orders for their removal. Following that, immigrants who have been in the country for less than two years are placed into a fast-track removal process, which does not involve a hearing before a judge. Alongside the internal tactics of the agency, ICE has also sought help from members of the public, with a phone number for people to call and report on potential illegal immigrants. 'When you call our Tip Line, we listen!' the agency wrote in the caption of a video posted to X last month. The somewhat graphic footage showed the arrest of several men outside a home improvement store in Baltimore, Maryland. For those wanting an end to the hunt and a chance of future return to the U.S., the government has offered yet another solution. On Monday, the DHS announced on X that any immigrants who self-deported through its 'CBP Home App' would receive 'forgiveness of any failure to depart fines,' as well as cost-free travel and even a $1,000 'exit bonus.' 'By self-deporting, illegal aliens take control of their departure and may preserve the opportunity to come back to the U.S. the right and legal way in the future,' it added.
Telegraph
6 hours ago
- Telegraph
Inside the murky case of the Chinese ‘bioterrorists'
A plot of some kind is afoot. It is August 12 2022 and Yunqing Jian, a young Chinese plant scientist, is flying from Seoul to San Francisco. But she has a problem. She is apparently carrying contraband – seeds she needs to smuggle through customs. She sends a worried message on the Chinese social media platform WeChat to her boyfriend, Zongong Liu, with whom she had studied plant diseases at Zhejiang University in eastern China. Mr Liu is calm but practical. He warns that 'teacher Liang's seeds must be placed well' and reminds her she will have to pass through security again after picking up her bags. Ms Jian is anxious. She considers hiding the seeds in her shoes, but cannot remove the insole, according to a 'condensed' and 'machine-translated' transcript provided by the FBI. Eventually, they hit on a solution: Ms Jian stuffs the seeds into a tiny zip-lock bag and hides them in her Dr Martens, slipping through airport security undetected. What the seeds were, no one seems to know. Nor would anyone have found out had Mr Liu allegedly not been more careless on his own trip from Shanghai to Detroit last July. Following a routine search, US agents discovered a sheet of filter paper and four small resealable plastic bags concealed in a wad of tissue tucked into a hidden pocket of his backpack. This time, US investigators were able to make a positive identification. Mr Liu was allegedly carrying Fusarium graminearum, a highly destructive fungal pathogen responsible for billions of dollars in agricultural losses every year. The 'toxic' fungus, the FBI said, was 'a potential agroterrorism weapon'. Mr Liu was deported. Last week, after an 11-month investigation, the FBI arrested Ms Jian, who has been working as a postdoctoral fellow at the University of Michigan. Citing evidence that she had taken an oath of allegiance to the Chinese Communist Party (CCP), the FBI hinted at possible state backing. The case deepened on Sunday when US authorities arrested another Chinese researcher, Chengxuan Han, upon arrival at Detroit airport. She is suspected of sending four shipments of 'concealed biological material' to the same Michigan lab where Ms Jian worked. Federal officials were quick to allege a broader conspiracy to harm the United States. 'The alleged actions of these Chinese nationals, including a loyal member of the Chinese Communist Party, are of the gravest national security concerns,' said Jerome Gorgon, US attorney for Michigan's eastern district. 'These two aliens have been charged with smuggling a fungus that has been described as a 'potential agroterrorism weapon' into the heartland of America, where they apparently intended to use a University of Michigan laboratory to further their scheme.' Some senior figures in the Trump administration echoed the alarm. Kash Patel, the FBI director who has courted controversy for promoting conspiracy theories, wrote on X: 'This case is a sobering reminder that the CCP is working around the clock to deploy operatives and researchers to infiltrate American institutions and target our food supply… putting American lives and our economy at serious risk.' Pam Bondi, the US attorney general, praised the investigation and vowed to protect 'our nation from hostile foreign actors who would do us harm.' But not everyone in the scientific community is convinced the case is as clear-cut as investigators and politicians claim. It is possible, they say, that Ms Jian and Mr Liu were undercover operatives on a mission to harm US interests. However, it is just as plausible that they were simply a pair of earnest, slightly nerdy researchers engaged in irregular but ultimately harmless research who foolishly tried to skirt American bureaucracy. There is no doubt that Fusarium graminearum is a dangerous pathogen. It infects cereal crops, leading to shrivelled grains and yield loss. In some cases, it can make livestock and humans sick through mycotoxin contamination. Yet, as scientists point out, the fungus is already endemic in the United States – and has been for more than a century. It is also widespread in the UK and Europe. Weaponising the fungus is theoretically possible, says a senior agricultural specialist at the United Nations, who asked not to be named. Both the US and the Soviet Union once explored using a related fungus, Fusarium oxysporum, nicknamed 'Agent Green', in biowarfare targeting crops. But neither fully developed it. 'You could theoretically introduce a new strain during flowering, when cereals are most vulnerable,' he said. 'But as an act of agricultural sabotage, it wouldn't make much sense. It would be detected quickly as monitoring systems are already very stringent.' While all three Chinese scientists allegedly lied about the work they were doing and the materials they brought into the US, scientists suggest other motives for the cover-up, such as trying to bypass complex phytosanitary importation regulations. 'It seems to me this was bad judgment fuelled by scientific excitement, not agroterrorism,' Caitilyn Allen, of the University of Wisconsin, told Chemistry World, the Royal Society of Chemistry's monthly journal. She also disputed the FBI's classification of the fungus as an agroterrorism threat: 'Fusarium graminearum does not pose a national security threat.' Other elements of the FBI case are also under scrutiny. While the agency emphasised Ms Jian's apparent pledge of allegiance to the CCP, this is not unusual among Chinese researchers – it is often a bureaucratic requirement for securing state research funding. Whether the Chinese scientists were masterminds of a sinister plot or simply reckless is still unclear. Even sympathetic scientists concede their behaviour is, at times, puzzling. Ms Jian failed to tell her supervisors – or the FBI – that she was working on Fusarium graminearum isolates, some of which her boyfriend in China had provided. Mr Liu claimed he was merely visiting his girlfriend, yet the contents of his backpack suggested otherwise. Even so, scientists caution that to brand this as 'terrorism' would be a leap. Further complicating matters is the broader political climate in both countries. Chinese science is often conducted under heavy secrecy. Beijing has also fuelled international suspicion – particularly over its handling of the Covid-19 outbreak. Accusations of Chinese involvement in agricultural sabotage are not new. In 2016, four Chinese nationals were arrested in Indonesia for allegedly contaminating chilli seeds with another crop-damaging pathogen. In 2020, mystery seeds postmarked from China arrived at thousands of homes in the US, UK, Canada and New Zealand, raising fears of a co-ordinated biowarfare campaign. Yet early alarm often gives way to more mundane explanations. Indonesia later convicted the Chinese nationals on visa charges, not agroterrorism. The seed packets were likely part of a marketing ploy known as a 'brushing scam'. So far, Ms Jian and Ms Han have so far only been charged with visa fraud, making false statements and smuggling, not espionage. US politics may also be playing a role. Donald Trump, the US president, has pushed to revoke visas for Chinese students as part of a wider immigration clampdown. His administration is actively seeking misconduct cases at American universities to bolster his attacks on higher education. Some fear the upshot of the case will be a greater suspicion of research and international scientific collaboration – a development, they warn, that would benefit no one. Yet a balance must be struck between the shared pursuit of research that could aid humanity and the need to protect Western food security from potential state threats, analysts say. Agriculture a 'soft target' for bioweapons In intelligence circles, concern is growing over the risk of biological warfare targeting agriculture, even if confirmed attacks remain rare or unproven. The US military, after all, has previously tested pathogens such as stem rust, rice blast and Agent Green with the aim of using them to destroy opium poppies in Afghanistan and coca crops in Colombia, well after the Cold War. Since the 9/11 attacks, US security agencies have warned that agriculture is a 'soft target' for bioweapons – a concern shared in the UK where the Ministry of Defence stepped up monitoring of potential bioterror threats following the BSE and foot-and-mouth outbreaks. Worryingly, as Barry Pavel and Vikram Venkatram noted in a 2021 paper for the Atlantic Council think-tank, the tools for biological sabotage are now more accessible than ever. 'Terrorist groups could use synthetic biology to craft bioweapons, using data to manufacture dangerous pathogens or modifying easily accessible pathogens to make them more virulent,' they wrote. The work the Chinese researchers were doing, then, can arguably be interpreted in two ways. Either they were modifying pathogens to increase their virulence – a theory the FBI appears to favour – or they were continuing China's century-long quest to develop resistance to Fusarium and combat a blight that has devastated cereal crops across the temperate world. Which interpretation is correct remains unclear. China has said little about the detention of the two scientists, who remain in custody. But on Tuesday evening, the Ministry of State Security – China's main intelligence agency – issued a statement that, while not directly referring to the case, seemed to offer a third explanation. It accused foreign research institutions of recruiting volunteers inside China and inducing them 'illegally to collect data on the distribution of biological species in China'. In other words, the three researchers may not have been Chinese agents or naive rule-breakers – but perhaps something altogether more startling: covert operatives working for the United States.
Daily Mail
7 hours ago
- Daily Mail
Kash Patel sues MSNBC analyst over nightclub claim
Published: Updated: Kash Patel is filing a lawsuit against an MSNBC analyst who claimed on air that the FBI Director spends more of his time 'at nightclubs' than he does at work. Frank Figliuzzi, ex-assistant director for counterintelligence at the FBI after serving as a special agent for 25 years, said on Morning Joe last month that Patel spends much of his time out clubbing. Just days later, the show and the network were forced to retract and admit that there was no evidence. Now, Patel has filed a defamation lawsuit against Figliuzzi, who the FBI Director says was 'fabricating a specific lie' about him, citing the nightclub comment. Patel's lawyers claim in the suit, filed in Texas, that Figliuzzi 'knew that this was a lie when he said it.' Furthermore, they make a point of saying that 'since becoming Director of the FBI, Director Patel has not spent a single minute inside of a nightclub.' '[T]here was no basis for Defendant's fabrication, and Defendant's use of the weasel word, 'reportedly,' is itself a fabrication,' the suit alleges. 'Defendant did not rely on reporting by any other person. Defendant made up the story out of whole cloth, and by using the word 'reportedly,' attempts to distance himself from what is a maliciously false and defamatory statement.' They also claim that Figliuzzi (pictured) made up the rumor because he has a 'clear animus' toward Patel, slamming his credentials for the job in a column previously, The New York Post reports. Ultimately, the plaintiff alleges that 'as a partisan commentator, (Figliuzzi) was motivated to sensationalize, and in this case, fabricate a story to self-promotingly advance his own name recognition, at the expense of Director Patel.' The network declined comment on the matter when reached by Tuesday afternoon. Figliuzzi made the allegation in early May, just months into Patel's tenure as FBI Director, appointed by Donald Trump. 'Reportedly, he's been visible at nightclubs far more than he has been on the seventh floor of the Hoover building,' Figliuzzi said on Morning Joe. Liberal journalist and co-host Jonathan Lemire (pictured) introduced the mea culpa the following Monday, mentioning that Figliuzzi had been on the show before explaining that he had no proof about the nightclub comment. 'At the end of that segment, Figliuzzi said that FBI Director Kash Patel has been more visible at nightclubs than the FBI headquarters. This was a misstatement. We have not verified that claim,' Lemire said. Lemire then tossed to commercial break without any apology. The FBI has declined comment on the matter. has reached out to both the White House and MSNBC for comment. Figliuzzi told Lemire Friday that Patel frequents nightclubs more than he does the seventh floor of the Hoover building, where the FBI offices are located. 'And there are reports that daily briefings to him have been changed from every day to maybe twice weekly,' he added. Figliuzzi explained that Patel's absence is a 'blessing and a curse,' due to his lack of experience in the field. 'If he's really trying to run things without his experience, without any experience level, things could be bad. If he's not plugged in, things could be bad. But he's allowing agents to run things so we don't know where this is going,' Figliuzzi confessed. The former FBI assistant director claimed Patel frequently splits his time between the office in Washington, DC, and his home in Las Vegas, citing reports from the Wall Street Journal and the Washington Post. Figliuzzi added that he's heard Patel decreased briefings from a daily schedule to only twice a week. He concluded that the one word he keeps hearing in his circles is 'chaos' and revealed that employees don't know what's happening. Patel was an unlikely pick for the position, having no experience as an FBI agent. He began his career as a public defender and served in the Department of Justice as a national security prosecutor. He was also an advisor on national security and senior counsel for the House Permanent Select Committee on Intelligence. Patel founded The Kash Foundation and served as deputy director of National Intelligence before he was confirmed as the ninth Director of the FBI . He's had a rocky journey thus far, coming under fire last week for announcing the arrest of Circuit Court Judge Hannah Dugan . 'Just NOW, the FBI arrested Judge Hannah Dugan out of Milwaukee, Wisconsin, on charges of obstruction — after evidence of Judge Dugan obstructing an immigration arrest operation last week,' Patel wrote on his official X account. 'We believe Judge Dugan intentionally misdirected federal agents away from the subject to be arrested in her courthouse, Eduardo Flores Ruiz, allowing the subject — an illegal alien — to evade arrest.' The post was then mysteriously deleted before it was reposted two hours later without explanation. Judge Dugan was arrested and charged with two felony counts of obstruction and concealing an individual for allegedly helping an undocumented migrant from getting arrested after he appeared in her courtroom. Patel also came under fire from Senate Democrats who recently launched an inquiry into his personal travel on a government aircraft, CBS News reported. Rumors swirled that Patel used the FBI's private fleet of jets to visit his girlfriend and attend sporting events, including a UFC fight and a hockey game, where he was pictured sitting next to Wayne Gretzky.
