Introduction

A new ransomware variant known as Medusa Ransomware is quickly growing in notoriety as it uses aggressive double extortion methods combined with the expanding Ransomware as a Service (RaaS) model. Interestingly, the malware encrypts data as well as exfiltrates data that is usually sensitive. This means that if a business does not pay to prevent public data disclosure, they could not only be dealing with business disruption but also with repercussions because of potential data violations at the hands of the destructive Medusa gang. It is curious to note that the rise of the Medusa gang is part of the increasing rate of ransomware attacks.

Medusa’s Rise Amid a Ransomware Surge

The global number of recorded ransomware attacks increased exponentially. This is evident with the rise of Medusa. It is essential to note that the first recorded attack associated with the Medusa ransomware occurred midway through 2021. By 2023, it had developed to rank among the top ten ransomware malware operators.