Posted on 03/18/2025 6:48:37 AM PDT by V_TWIN
Users beware: This ransomware poses a threat to precious data.
The FBI has issued a warning regarding malicious malware that demands a ransom from victims in order to release their data.
Dubbed “Medusa,” the “ransomware-as-a-service” has affected more than 300 known people “from a variety of critical infrastructure sectors” since it was first discovered in 2021, according to a recent advisory penned by the Federal Bureau of Investigation, the Cybersecurity and Infrastructure Security Agency and the Multi-State Information Sharing and Analysis Center.
In order to protect themselves, people can follow the agencies’ tips and tricks for securing accounts and personal information to prevent data theft.
For instance, it is recommended that all accounts require password logins that are long and changed regularly, in addition to using multi-factor authentication — ideally using an authenticator app, not text messages — and keeping systems and software updated.
The agencies also advise keeping data and information backed up in another location, such as the cloud or on a hard drive, and encrypted. Additionally, be wary when clicking on links and opening or downloading attachments, especially when received via email or text. Email addresses can be easily spoofed and can look convincingly legit — even if they’re not.
If you accidentally open a link or download a file that proves to be malicious, don’t sweep it under the rug, experts warn.
(Excerpt) Read more at nypost.com ...
“...using multi-factor authentication — ideally using an authenticator app, not text messages”
~~~
Why would text messages be a bad way to add a factor in authentication? It goes to the device or number where the “authenticator app” is.
Personally, I find the idea of an “authenticator app” creepy.
“Odd” or “unusual” in a word…
I have nothing to ransom
NEVER click on ANY links from email or IN messages you don’t recognize
Never answer unknown calls either, don’t open the door to scams, block/report spam. Don’t be stupid.
I have friends that still use aol and Juno email accounts - I don’t think they ever get hacked
SMS texts are unsecure and subject to interception and spoofing.
Got one in Hotmail saying it had my info and would “release it unless I paid”, but I didn’t open it as it was from my own address (spoofed)- I look3d at the source rather than open it- which zpparently is safer. Also was on linux at the time, so again, another lever of protection.
To view source, right cl8ck an unopened email, and choose “source” or “view source” or something like that. You can check out pertinent details like where it is actually from, which is why I viewed the source as it looked like it was from my email address. They threatened to “release Incriminating evidence” if I didn’t pay up, which was a crock because I don’t have anything to hide- there is no incriminating evidence to reveal- however, with ai becoming prominent now, deep fakes will be produced and used as blackmail no doubt- i think the internets is gonna get ugly (or rather uglier than it already is) in the near future-.
See my post above- deep fakes are gonna be a thing I think-
I got those emails, along with ones claiming to have captured me in embarrassing ways (and will publicly release video) — they are all bogus.
Besides, what better way to advertise an Only Fans person than to have people willing to spread the news that you can get more of this if you go to an official account!
Ugh.
Yeah that is what mine said, that they had videos of me in embarrassing situations. I guess they caught me picking my nose at some point? Because that is all the video,they could possibly have of an embarrasing situation in my case 😆
“NEVER click on ANY links from email or IN messages you don’t recognize”
NEVER click on ANY links from email or IN messages.
There is rarely any reason to use a link except convenience. The problem is that a good scammer will make you think you recognize the sender.
Maybe because nobody thinks they are still there.
SSMS texts are unsecure and subject to interception and spoofing.
~~~
Sure they are, but do you know what kind of sophisticated op some hackers would need to have in order to hack your email password AND intercept your SMS messages?
If they stole your phone, then they also have access to your authentication App. To me, if you are targeting an individual, it’s probably more feasible to get their device than it is to intercept cellular traffic in between their provider and their device.
I know that this article is talking about individuals who were being targeted inside of critical infrastructure, but that’s not how 99% of most hacks work. They are almost always just hacks/crimes of opportunity, and not sophisticated targeting operations.
I have to pay my $6.99 toll because ......
Somebody from a job a couple of years ago put us all on a group messaging - then probably got it read by phishing
now I get messages on my backup phone with idiotic scams - I try to keep blocking them
That would be good advice even without this business.
Right, I understand. Was just providing a simple answer to the question.
bkmk
How do you right click an email that comes in on your phone?
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.