Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Federal authorities warn MedusaLocker ransomware targeting remote desktop vulnerabilities
Malware and Vulnerabilities
July 05, 2022
Cybersecurity Dive
MedusaLocker uses a batch file to execute a PowerShell script, called invoke-Reflective PEInjection. Attacks typically restart machines in safe mode to avoid detection by security software.
Read More
MedusaLocker ransomware
FBI
CISA Advisory
FinCEN
RDP Access
Publisher
Previous
Facebook 2FA phish arrives just 28 minutes after scam d ...
Identity Theft, Fraud, Scams
Next
Ukrainian Authorities Arrested Phishing Gang That Stole ...
Incident Response, Learnings
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_170062403.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/iStock-163113558.jpg)
