Medusa Group Attempts to Recruit BBC Cybersecurity Correspondent
Cybercriminals, part of the notorious Medusa group, recently attempted to recruit BBC cybersecurity correspondent Joe Tidy. The group, known for double-extortion attacks, has been active since January 2021 and has targeted over 300 US critical infrastructure sites.
The attackers initially approached Tidy with an offer of 15% participation in the subsequent ransom payment, in exchange for access to the BBC network. They later increased this to 25% due to potential high ransom demands. The Medusa group is known to recruit initial access brokers through cybercrime forums and darknet platforms, but it remains unclear who initially promoted their services in 2021.
Tidy suspects the criminals mistook him for an IT security employee with expanded access rights. The attackers attempted to convince him by referencing previous successful attacks enabled by disgruntled employees. When Tidy didn't respond, the attacker deleted their Signal account. After a failed MFA attack, they sent an apology message and kept the offer open for a few more days.
The Medusa group's attempt to recruit Joe Tidy highlights the evolving tactics of cybercriminals targeting high-profile individuals. Despite the failed attempt, the group's persistence and increasing offers underscore the serious threat they pose to organizations and their networks.
Read also:
- Trump and Xi speak over the phone, according to China's confirmation.
- NVIDIA introduces Blackwell to the cloud and unveils the significant enhancement of GeForce Now at Gamescom 2025, marking a major step in cloud gaming technology.
- Strategies for Adhering to KYC/AML Regulations in India, a Leading Fintech Center (2024)
- Strategies for Poland, Ukraine, and NATO to combat unmanned Russian aerial threats.
