We’re still seeing Medusa actively targeting CNI, education, legal, insurance and manufacturing sectors in early 2025. As such we did a bit of a deep dive to learn more about them. Plenty of IOCs and TTPs in here if you’re a detection engineer in one of the targeted sectors!
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| #202 - Intel Chat: CISA, BianLian (not), Crafty Camel, Github malvertising & SCADA | 0 | 15 | March 13, 2025 | |
| SocGholish’s Intrusion Techniques Facilitate Distribution of RansomHub Ransomware | 0 | 14 | March 14, 2025 | |
| Critical Veeam Vuln — Ransomware actors have taken note 👀 | 0 | 34 | March 19, 2025 | |
| Unpatched Windows Zero-Day Flaw Exploited by 11 State-Sponsored Threat Groups Since 2017 | 0 | 19 | March 18, 2025 | |
| [Defender Fridays] Typhoon Season: Hunting chinese state actors with the latest CISA joint advisory with David Burkett - September 19 | 1 | 31 | September 26, 2025 |