Cybersecurity journalist Joe Tidy was targeted by threat actors claiming to be from the Medusa ransomware gang, who aimed to use his access to breach BBC systems for ransom. The incident highlights the dangers of insider threats, social engineering, and the tactics used by ransomware groups like Medusa to infiltrate critical infrastructures. #MedusaRansomware #InsiderThreats
Keypoints
- Threat actors attempted to recruit BBC cybersecurity journalist Joe Tidy as an insider for Medusa ransomware operations.
- The group offered a ransom sharing scheme, promising Tidy up to 15% of the ransom if he provided access.
- Medusa ransomware, active since 2021, has conducted over 300 attacks on U.S. critical infrastructure.
- The threat actors used tactics like MFA bombing to try to gain unauthorized access to the BBC systems.
- Tidy involved the BBC security team and avoided falling victim, demonstrating the importance of cybersecurity awareness.