"Medusa Claims Minneapolis Public Schools as Victim"

Minneapolis Public Schools (MPS) has been added to the darknet website used by the Medusa ransomware group to claim and extort victims. If the school system does not pay the demanded ransom, the threat actors threaten to make the stolen data public. MPS enrolls more than 35,000 students annually and operates about 100 schools in Minneapolis. In February, MPS acknowledged the cyberattack after the organization's Information Technology (IT) systems went offline. MPS described the ransomware attack as an "encryption event," which gained attention on social media. A blog post by Medusa reveals that the hackers want the school district to pay $1 million to delete the stolen data. Anyone interested in downloading the stolen data must also pay the same amount. According to the deep web watchdog Darkfeed, Medusa attacked at least 18 companies in February, making it the third most active cybercriminal group that month. This article continues to discuss the Medusa ransomware gang adding MPS to its darknet website and other findings regarding this prolific group.

Cybernews reports "Medusa Claims Minneapolis Public Schools as Victim"