Dataconomy
  • News
    • Artificial Intelligence
    • Cybersecurity
    • DeFi & Blockchain
    • Finance
    • Gaming
    • Startups
    • Tech
  • Industry
  • Research
  • Resources
    • Articles
    • Guides
    • Case Studies
    • Whitepapers
    • AI Models Leaderboard
  • AI toolsNEW
  • Newsletter
  • + More
    • Glossary
    • Conversations
    • Events
    • About
      • Who we are
      • Contact
      • Imprint
      • Legal & Privacy
      • Partner With Us
Subscribe
No Result
View All Result
  • AI
  • Tech
  • Cybersecurity
  • Finance
  • DeFi & Blockchain
  • Startups
  • Gaming
Dataconomy
  • News
    • Artificial Intelligence
    • Cybersecurity
    • DeFi & Blockchain
    • Finance
    • Gaming
    • Startups
    • Tech
  • Industry
  • Research
  • Resources
    • Articles
    • Guides
    • Case Studies
    • Whitepapers
    • AI Models Leaderboard
  • AI toolsNEW
  • Newsletter
  • + More
    • Glossary
    • Conversations
    • Events
    • About
      • Who we are
      • Contact
      • Imprint
      • Legal & Privacy
      • Partner With Us
Subscribe
No Result
View All Result
Dataconomy
No Result
View All Result

Medusa gang offered BBC reporter share of ransom

Reporter approached on Signal by Medusa group promising 25% ransom for BBC network credentials.

byAytun Çelebi
September 29, 2025
in News
Home News
Share on FacebookShare on TwitterShare on LinkedInShare on WhatsAppShare on e-mail
Google Preferred Source

A BBC cyber correspondent was propositioned by a criminal organization on the Signal app in July, offering a share of a ransom payment in exchange for internal access to his employer’s computer systems. The incident provided a direct look into how cybercriminals attempt to recruit insiders to facilitate attacks.

The recruitment attempt

The unsolicited message came from an individual identified as “Syndicate,” who made a direct proposal for an insider-threat collaboration.

“If you are interested, we can offer you 15% of any ransom payment if you give us access to your PC.”

The correspondent, Joe Tidy, consulted with a senior editor and decided to engage with the individual to gather intelligence on the group’s methods. Feigning interest, he requested more details on how the plan would work. The contact, now named “Syn,” explained that the process would involve the reporter providing his corporate login credentials, which the gang would use to infiltrate the BBC’s network, deploy malicious software, and demand a ransom in bitcoin.

Stay Ahead of the Curve!

Don't miss out on the latest insights, trends, and analysis in the world of data, technology, and startups. Subscribe to our newsletter and get exclusive content delivered straight to your inbox.

The negotiation

As the conversation continued, the financial incentive was significantly increased. The initial 15% offer was raised to 25% of a ransom that Syn projected could be in the “tens of millions.”

“We aren’t sure how much the BBC pays you but what if you took 25% of the final negotiation as we extract 1% of the BBC’s total revenue? You wouldn’t need to work ever again.”

To build trust, the contact, who identified himself as a “reach out manager” for the cyber-crime group Medusa, claimed to have successfully struck deals with insiders in past attacks, naming a UK-based healthcare company and a US-based emergency-services provider as previous victims.

The hackers’ identity

Medusa is a known ransomware-as-a-service (RaaS) group, which allows criminal affiliates to use its malicious software to launch attacks in exchange for a share of the profits. The group’s administrators are believed to operate from Russia or an allied state and reportedly avoid targeting organizations within that region. To prove their credibility, the contact sent the reporter a link to a public warning about Medusa issued by US cyber authorities in March, which noted the group had compromised more than 300 victims.

From conversation to attack

The tone shifted as the criminals grew impatient, urging the reporter to make a deposit of 0.5 bitcoin (approximately $55,000) to secure a guaranteed minimum payment. They began asking specific technical questions about the BBC’s IT network and sent a snippet of computer code, instructing the reporter to execute it on his work laptop to reveal his level of internal access.

After the reporter stalled for time, the criminals escalated their tactics. His phone began receiving a constant barrage of two-factor authentication notifications from the BBC’s security login app. This technique, known as MFA bombing or Multi-Factor Authentication fatigue, is designed to overwhelm a target with approval requests, hoping they will accept one by mistake or out of frustration.

The aftermath

Concerned about accidentally approving a prompt, the reporter contacted the BBC’s information security team. As a precaution, the team disconnected his account from the network, cutting off his access to all internal systems.

Later that evening, the hacker sent a message apologizing for the “test.” After the reporter ceased responding, the contact deleted their Signal account and disappeared. The reporter’s access to BBC systems was eventually reinstated with enhanced security protections. The incident provided him with firsthand experience of an insider threat attack and the evolving tactics used by cybercriminals.


Featured image credit

Tags: BBCFeaturedMedusa gang

Related Posts

Claude Fable 5 free access extended until July 19

Claude Fable 5 free access extended until July 19

July 13, 2026
Samsung Galaxy Z TriFold 2 launch may be delayed

Samsung Galaxy Z TriFold 2 launch may be delayed

July 13, 2026
Apple to skip M6 Pro and Max chips, fast-tracks M7 lineup for AI focus

Apple to skip M6 Pro and Max chips, fast-tracks M7 lineup for AI focus

July 13, 2026
OpenAI lifts GPT-5.6 Sol usage limits temporarily

OpenAI lifts GPT-5.6 Sol usage limits temporarily

July 13, 2026
OpenAI launches ChatGPT Work productivity app

OpenAI launches ChatGPT Work productivity app

July 10, 2026
Meta files patent for AI-powered emotional monitoring device

Meta files patent for AI-powered emotional monitoring device

July 10, 2026

LATEST NEWS

Claude Fable 5 free access extended until July 19

Samsung Galaxy Z TriFold 2 launch may be delayed

Apple to skip M6 Pro and Max chips, fast-tracks M7 lineup for AI focus

OpenAI lifts GPT-5.6 Sol usage limits temporarily

OpenAI launches ChatGPT Work productivity app

Meta files patent for AI-powered emotional monitoring device

BEST AI MODELS LEADERBOARD

See the best AI models, ranked by intelligence, benchmark results, speed and token price. Find the most suitable LLMs, Text-to-Image, Image Editing, Text-to-Speech, Text-to-Video and Image-to-Video  artificial intelligence model for your tasks and business.

LATEST TOOLS

Mootion

Legacy AI

Copyseeker

ProPhotos

Kuki AI

Create

RemodelAI

AItwitch

Vadoo AI

Greptile AI

Dataconomy

COPYRIGHT © DATACONOMY MEDIA GMBH, ALL RIGHTS RESERVED.

  • About
  • Imprint
  • Contact
  • Legal & Privacy

Follow Us

  • News
    • Artificial Intelligence
    • Cybersecurity
    • DeFi & Blockchain
    • Finance
    • Gaming
    • Startups
    • Tech
  • Industry
  • Research
  • Resources
    • Articles
    • Guides
    • Case Studies
    • Whitepapers
    • AI Models Leaderboard
  • AI tools
  • Newsletter
  • + More
    • Glossary
    • Conversations
    • Events
    • About
      • Who we are
      • Contact
      • Imprint
      • Legal & Privacy
      • Partner With Us
No Result
View All Result
Subscribe

This website uses cookies to improve your experience. You can choose to accept or reject them. Visit our Privacy Policy.