Home / Feb 25, 2026 / Story
1
#5 Dark Reading general February 24, 2026 at 21:18 UTC

Lazarus Group Picks a New Poison: Medusa Ransomware

By Rob Wright

AI Summary

North Korean Lazarus Group has been observed deploying Medusa ransomware in attacks against U.S. healthcare organizations and Middle Eastern entities. The threat actors also used Comebacker backdoor, Blindingcan RAT, and Infohook stealer to establish persistence and exfiltrate data from compromised networks.

Relevance score: 90.0/100

# More from February 25