CISA Alert AA22-181A – #StopRansomware: MedusaLocker. [CISA Cybersecurity Alerts]

CISA, the FBI, the Department of the Treasury, and the Financial Crimes Enforcement Network are releasing this alert to provide information on MedusaLocker ransomware. Observed as recently as May 2022, MedusaLocker actors predominantly rely on vulnerabilities in Remote Desktop Protocol to access victims’ networks.
AA22-181A Alert, Technical Details, and Mitigations
Stop Ransomware
CISA Ransomware Guide
CISA No-cost Ransomware Services
All organizations should report incidents and anomalous activity to CISA’s 24/7 Operations Center at central@cisa.dhs.gov or (888) 282-0870 and to the …

access alert alerts cisa cisa alert crimes cybersecurity department desktop enforcement fbi financial information may may 2022 medusalocker mitigations network networks protocol ransomware remote desktop remote desktop protocol stopransomware technical treasury vulnerabilities