Medusa Ransomware Hits 40+ Victims in 2025, Demands $100K–$15M Ransom

The Medusa ransomware group, active since January 2023, has claimed nearly 400 victims, with a 42% increase in attacks between 2023 and 2024. The group, known for double extortion tactics, targets large organizations across various sectors, including healthcare, finance, and government. Medusa’s attack chains involve exploiting vulnerabilities, deploying RMM software, and using tools like KillAV and PDQ Deploy for lateral movement and data exfiltration.