MedusaLocker is a ransomware strain operating as Ransomware-as-a-Service, recruiting skilled pen testers to enhance their attack efficiency and profitability. The group seeks testers to target ESXi, Windows, and ARM systems, emphasizing direct access to corporate networks. #MedusaLocker #RaaS #PenTestRecruitment
Keypoints
- MedusaLocker first appeared in late 2019 as a ransomware encrypting files and demanding cryptocurrency ransom.
- The ransomware operates through a Ransomware-as-a-Service model, allowing affiliates to rent and profit from it.
- The group publicly seeks skilled penetration testers to identify vulnerabilities and facilitate fast, effective attacks.
- Hiring pen testers helps ransomware gangs increase stealth, efficiency, and ransom profits while outsourcing operational risk.
- Recruits are expected to have expertise in enterprise environments, including Active Directory, VMware, and privilege escalation techniques.