Medusa Ransomware Fast to Exploit Vulnerabilities, Breached Systems - SecurityWeek

The Medusa ransomware group, operating as a ransomware-as-a-service, has been rapidly exploiting vulnerabilities, including zero-days, to breach over 300 organizations, particularly in critical infrastructure, and employs double extortion tactics. Microsoft highlights their swift operational tempo, often moving from initial access to post-compromise operations within days or hours, and their proficiency in weaponizing newly disclosed vulnerabilities.

Edward Kiledjian @ekiledjian