Storm-1175 Deploys Medusa Ransomware at 'High Velocity'

Microsoft has identified Storm-1175, a financially motivated cybercrime group, deploying Medusa Ransomware in high-velocity campaigns. The threat actor exploits both N-day and zero-day vulnerabilities to gain initial access and execute attacks rapidly. Medusa ransomware encrypts victim data, demanding payment for decryption keys. Organizations should prioritize patch management to address known vulnerabilities, implement network segmentation, maintain offline backups, and deploy endpoint detection and response solutions to mitigate this ransomware threat.

Microsoft says the financially motivated cybercrime group has exploited N-day and zero-day vulnerabilities in campaigns predicated on speed.

Microsoft has identified Storm-1175, a financially motivated cybercrime group, deploying Medusa Ransomware in high-velocity campaigns. The threat actor exploits both N-day and zero-day vulnerabilities to gain initial access and execute attacks rapidly. Medusa ransomware encrypts victim data, demanding payment for decryption keys. Organizations should prioritize patch management to address known vulnerabilities, implement network segmentation, maintain offline backups, and deploy endpoint detection and response solutions to mitigate this ransomware threat. Microsoft says the financially motivated cybercrime group has exploited N-day and zero-day vulnerabilities in campaigns predicated on speed. Microsoft says the financially motivated cybercrime group has exploited N-day and zero-day vulnerabilities in campaigns predicated on speed.