Lazarus Hackers Adopt Medusa Ransomware for Extortion Campaigns Targeting Healthcare and Nonprofits

📌 A joint investigation by Symantec and Carbon Black Threat Hunter teams revealed that the Lazarus hacker group, linked to North Korea, is deploying Medusa ransomware in ongoing extortion campaigns. These attacks specifically target the U.S. healthcare sector and a Middle Eastern entity, as well as nonprofit organizations. The findings indicate that Lazarus continues its ransomware-driven extortion operations despite previous U.S. indictments against the group. No specific technical details, dates, or CVE IDs were provided in the report. The primary impact involves financial extortion through ransomware deployment against critical sectors.