Medusa Ransomware Group Claims Intrusions at Two New Victims, Sets Ransom Deadline

The Medusa ransomware group has recently targeted two companies, Karam Chand Thapar & Bros. (Coal Sales) Ltd in India and Windak Group, demanding significant ransoms for the release of encrypted data. Both attacks were listed on the group's dark web portal, highlighting the growing threat posed by the Medusa ransomware group. The ransom amounts for the two companies are $200,000 and $100,000 respectively, with deadlines for payment set within the next nine days. Efforts are being made to verify these claims, but no official response has been received from the targeted companies. The Medusa ransomware group follows a pattern of using their dark web platform to announce their victims, and they primarily target Windows machines through spam campaigns. They employ a double extortion tactic, stealing victim data before encryption and threatening to sell or release it if the ransom is not paid. The group focuses on industries such as healthcare, education, and enterprises with significant personal information.