FBI urges 2FA activation due to Medusa ransomware

The FBI and the Cybersecurity and Infrastructure Security Agency have issued a warning urging webmail and VPN users to activate two-factor authentication (2FA) as soon as possible. This advice comes in response to ongoing attacks from Medusa ransomware, a powerful tool used by cybercriminals. The FBI noted that over 300 victims have suffered from Medusa attacks since they started in 2021. These attacks use a ransomware-as-a-service model, allowing anyone with enough money to rent the tools needed to launch attacks. This means that no prior technical skills are necessary for the attackers. Recent research has revealed that the Medusa threats have found ways to bypass anti-malware protections. Security experts from Elastic Security Labs have identified tactics that Medusa uses to avoid detection. They found that attackers deploy their malware using a loader that can disrupt security systems on infected machines. Because of this evolving threat, organizations should heed the FBI's warning and ensure they enable 2FA on all possible accounts. This includes popular services like Gmail and Outlook, as well as any accounts accessing critical systems. Following the FBI's advice can help protect against these significant cyber threats.