he FBI and the U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued warnings about the Medusa ransomware, active since 2021 and recently impacting hundreds of individuals. Medusa employs phishing campaigns to steal credentials and operates on a double extortion model, encrypting victim data while threatening to release it publicly if the ransom is not paid. The ransomware's data-leak site lists victims and offers a countdown to data release, with the option to delay the timer for a $10,000 cryptocurrency payment. Medusa has targeted over 300 victims in various sectors, including medical, education, legal, insurance, technology, and manufacturing.

‍