NASCAR Allegedly Targeted by Medusa Ransomware Group in $4 Million Extortion Attempt 

• The Medusa Ransomware gang reportedly breached the National Association for Stock Car Auto Racing.
• They allegedly exfiltrated almost 1,040 GB of sensitive data, setting the payment deadline to April 19.
• Specific details about the nature of the information remain undisclosed.

The Medusa ransomware group has reportedly claimed responsibility for a cyberattack on NASCAR (National Association for Stock Car Auto Racing), alleging that they have exfiltrated 1,038.70 GB of sensitive data. 

The threat actors are demanding a staggering $4,000,000 in ransom to prevent the release of the stolen information. According to a statement allegedly posted by the Medusa group, the ransomware operators breached NASCAR’s systems and obtained the data.

While specific details about the nature of the information remain undisclosed, data this extensive often includes financial records, contracts, or personal information, depending on the targeted organization’s infrastructure at the time of compromise.  

The group has issued an ultimatum, setting the ransom deadline for April 19, 2025. If their monetary demand is not met by this date, the Medusa group has threatened to release the exfiltrated data publicly. 

The Medusa ransomware group has emerged as one of the more prolific players in the ransomware landscape. Known for targeting high-profile organizations, the group employs exfiltration tools to steal vast amounts of data before initiating their encryption protocols. 

Ransomware attacks remain pervasive, and industry experts are urging organizations to take proactive measures to enhance their cybersecurity posture. Methods such as implementing zero-trust architecture, increasing endpoint security, and conducting regular training and simulations for staff can reduce vulnerabilities. 

Medusa Ransomware recently extorted construction service provider O’Shea Builders and Bell Ambulance. In other news, security researchers said Medusa, BianLian, and Play ransomware share the use of RansomHub’s custom-developed EDRKillShifter. 

Related

Play Ransomware Threatens New York Sports Clubs With Stolen Tax, Client, and Personal Data

Sensata Faces Operational Disruption Following Acknowledged Ransomware Attack

Qilin Member Gives Two Days to South Korean Company SK Group for Ransom Payment

DBS and Bank of China Vendor Ransomware Attack Exposed the Data of 8,200 Customers

Everest Ransomware Gang's Leak Website Gets Hacked

DragonForce Ransomware Claims Expansion Amid Alleged RansomHub Takeover 

Most Popular

"There’s shared DNA": How does Black Mirror's ‘Hotel Reverie’ Connect to ‘San Junipero’?

Hackers Stole SSN and Patient Health Data from the Addiction Treatment Center Maryhaven

Got to Get Out Season 1: Winners List and $1 Million Prize Money Distribution Revealed

201,617 Customer Records Allegedly from TheLotter Australia Found on BreachForums

"Where can this go?": Black Mirror Actors are Afraid that the tech in Hotel Reverie Could Become Reality

“I’m not sure I trust Netflix to do this well": Pride and Prejudice fans are not Convinced by Emma Corin and Jack Lowden’s Casting

"There’s shared DNA": How does Black Mirror's ‘Hotel Reverie’ Connect to ‘San Junipero’?

Hackers Stole SSN and Patient Health Data from the Addiction Treatment Center Maryhaven

Got to Get Out Season 1: Winners List and $1 Million Prize Money Distribution Revealed

201,617 Customer Records Allegedly from TheLotter Australia Found on BreachForums

"Where can this go?": Black Mirror Actors are Afraid that the tech in Hotel Reverie Could Become Reality

“I’m not sure I trust Netflix to do this well": Pride and Prejudice fans are not Convinced by Emma Corin and Jack Lowden’s Casting