Ransomware Attack on Fitzgerald, DePietro & Wojnas CPAs, P.C. by Medusa Group

Victim Profile: Fitzgerald, DePietro & Wojnas CPAs, P.C.

Fitzgerald, DePietro & Wojnas CPAs, P.C., a reputable accounting firm based in Utica, New York, has been compromised in a recent cyber-attack attributed to the Medusa ransomware group. Established in 1983, the firm specializes in tax preparation, financial planning, and business consulting, serving both individuals and businesses. With a team of 19 employees, this firm stands out in the New York area for its personalized service and deep expertise in tax and financial matters.

Details of the Attack

The attack resulted in the exfiltration of approximately 92.5 GB of sensitive data from the firm’s systems. The breach has directly impacted their operational capabilities, posing significant threats to client confidentiality and business integrity. The data stolen likely includes sensitive financial records and personal information of their clients, which were made public on Medusa's dark web leak site.

Medusa Ransomware Group Overview

Medusa, emerging in late 2022, operates as a Ransomware-as-a-Service (RaaS), allowing affiliates to deploy its ransomware tools. Known for disabling system recovery and demanding high ransoms, Medusa has targeted various sectors globally, indicating both the capability and intent to inflict substantial damage on its victims.

Potential Vulnerabilities and Penetration Tactics

The specific vulnerabilities exploited in this attack are not detailed, but Medusa typically targets weaknesses in network security, phishing vulnerabilities, or insufficient endpoint defenses. For a firm like Fitzgerald, DePietro & Wojnas CPAs, P.C., the combination of handling sensitive financial data and potentially inadequate cybersecurity measures may have made them an attractive target for Medusa.

Sources:

• SonicWall Blog
• Fort Worth Report
• Anvilogic
• HIPAA Journal