FBI warns Gmail users about ransomware attack
DORAL, FL – The Federal Bureau of Investigation (FBI) issued a warning for Gmail users on a dangerous ransomware attack campaign perpetuated by Medusa ransomware group.
According to the warning, the gang group has already victimized over 300 targets by means of using phishing scams to exploit unprotected software in the users’ digital devices. In this way, those who fall prey to this scheme have their private data being stolen from them.
Gmail users are victimized when they open fake emails or enter into malicious phony websites through which Medusa lock up their files, so that the owners of those files can’t open them back. At the same time, Medusa also steals copies of the files for the hackers.
Once the damage is done, Medusa proceeds to ask victims for a ransom payment of thousands or even millions of dollars under the promise of unlocking the files and not leaking the information to the public.
According to the FBI and US Cybersecurity and Infrastructure Security Agency (CISA), the most recurrent victims of these ransomware attacks have been employees of hospitals, schools, and large corporations.
For them, CISA recommends filtering their network traffic by preventing unknown or untrusted people from accessing remote services.
In addition, companies are also encouraged to limit use of high-status employees to just what’s needed, so the group can’t use those accounts to cause severe damage.
Regarding hospitals and schools, authorities urge them to split their computer networks into smaller sections with the purpose of making it harder for Medusa to crawl massively across systems, and thus, cause further damage.
For all Gmail users, the advice is simple: start using two-factor authentication (2FA), which texts users a security code before logging in. Also, check your operating systems, software, and firmware to make sure they’re properly patched and have the latest security updates.
If you have sensitive information in your device, keep multiple copies on separate servers or hard drives. For personal documents or photos stored in Gmail accounts, print out and keep physical copies in a secret location.
Do not click on a link or fill out forms providing detailed information if it comes from a suspicious email. Once you spot it, delete it immediately.
Photo by: Unsplash.com