The FBI has advised Gmail, Outlook, and VPN users to take steps to mitigate the risks, and urged users to act quickly to protect critical systems.
FBI warns of threat from dangerous Medusa ransomware group
How dangerous is the Madusa ransomware group?
Active since June 2021, Medusa is considered one of the most dangerous ransomware groups for individuals and businesses through the form of ransomware-as-a-service (RaaS), with 300 recorded victims. The group uses social engineering and exploits unpatched software vulnerabilities to infiltrate systems.
Security expert Tim Morris of Tanium stressed that Medusa's methods are sophisticated, with the ability to "exploit, persist, move laterally, and hide," making it crucial to have a comprehensive security plan in place. Meanwhile, Halcyon CEO Jon Miller said Medusa is a highly strategic group that often targets critical infrastructure organizations because they cannot afford downtime.
The FBI’s most recent investigation into Medusa’s activities in February 2025 provided insight into how the group operates. The FBI gathered information on Medusa’s tactics, techniques, and procedures before publishing it in cybersecurity advisory AA25-071A on March 12.
What is the solution for Gmail, Outlook and VPN users?
The FBI has taken urgent measures to address the Medusa threat. The agency recommends that users enable two-factor authentication (2FA) for all services, especially Gmail, Outlook, and VPNs. The FBI emphasizes that this should be done immediately to protect data.
Gmail, Google Drive experience global outage
Additionally, the FBI also offers a number of other important tips that users should follow to stay safe, including:
- Use long, strong passwords for all accounts.
- Store multiple backup copies of important data in multiple secure locations.
- Always keep your system, software, and firmware up to date.
- Use network monitoring tools to detect unusual activity.
- Limit administrative rights and regularly review these accounts.
- Disable unnecessary command line tools and scripts.
- Close unused network ports to reduce the risk of attack.
But some experts say the FBI has overlooked a key piece of prevention: training, because most ransomware attacks are caused by human error. Teaching people how to spot risks, just as important as learning how to avoid scams, could make a big difference.
Source: https://thanhnien.vn/fbi-canh-bao-khan-cap-cho-nguoi-dung-gmail-185250316093940059.htm
![[Photo] General Secretary To Lam receives the Director of the Academy of Public Administration and National Economy under the President of the Russian Federation](/_next/image?url=https%3A%2F%2Fvphoto.vietnam.vn%2Fthumb%2F1200x675%2Fvietnam%2Fresource%2FIMAGE%2F2025%2F12%2F08%2F1765200203892_a1-bnd-0933-4198-jpg.webp&w=3840&q=75)
Comment (0)