Unit 42 Threat Intelligence analysts have noticed an escalation in Medusa ransomware activities and a shift in tactics toward extortion, characterised by the introduction in early 2023 of their dedicated leak site (DLS) called the Medusa Blog. Medusa threat actors use this site to disclose sensitive data from victims unwillingRead More…

ChatGPT has exploded in popularity in the last few months – with people using it for everything from writing rap songs, doing their homework, writing cover letters for job applications, and even reviewing code. It’s no surprise that attackers are also trying to leverage the popularity of the app toRead More…

According to the latest update from Unit 42 Ransomware Threat Report, 1H 2021, the average ransomware payment climbed 82% since 2020 to a record $570,000 in the first half of 2021, as cybercriminals employed increasingly aggressive tactics to coerce organizations into paying larger ransoms.Read More…

Unit 42 has spent the past four months following the activities of Prometheus, a new player in the ransomware world that uses similar malware and tactics to ransomware veteran Thanos. Prometheus advertises itself as a “group of REvil”, yet Unit 42 found no evidence linking the two groups together.Read More…