The Medusa ransomware has infiltrated more than 300 organizations within critical infrastructure sectors in the United States, according to reports from CISA, the FBI, and MS-ISAC. Since its emergence in January 2021, Medusa ransomware garnered attention for its attack on the Minneapolis Public Schools district in March 2023. Victims of this ransomware encounter a triple extortion scheme, with one instance involving a double ransom demand from distinct actors, as outlined in a government advisory. Cyberattacks linked to this ransomware saw a notable surge between 2023 and 2024, according to Symantec researchers.