FBI Warning—Enable 2FA For Gmail, Outlook And VPNs Now

Forbes - Mar 13th, 2025

The Federal Bureau of Investigation (FBI) has issued a strong warning regarding ongoing ransomware threats, particularly from the Medusa ransomware gang, which targets Gmail users and critical infrastructure sectors. The FBI, in collaboration with the U.S. Cybersecurity and Infrastructure Security Agency (CISA), has emphasized the importance of enabling two-factor authentication (2FA) on webmail services like Gmail and Outlook, as well as on VPNs. The Medusa group has been active since June 2021, using both social engineering and exploiting unpatched software vulnerabilities in their attacks. The FBI's alert, coded AA25-071A, provides comprehensive details on the group's tactics and offers mitigation advice that includes using long passwords, maintaining backups, and updating software regularly.

However, the FBI's recommendations have faced criticism. Roger Grimes, a defense strategist at KnowBe4, argues that the advice fails to address the critical role of social engineering in ransomware attacks. Grimes points out that while social engineering is a key method used by cybercriminals, the FBI's list of 15 mitigations does not include awareness training to combat it. This oversight, according to Grimes, allows hackers to continue their successful campaigns, as security measures do not tackle the primary method of attack. Grimes likened the situation to securing doors when criminals are entering through windows, highlighting a misalignment between the nature of the threat and the defense strategies advised by authorities.

Fbi Cybersecurity Cisa Outlook Social Engineering Gmail Two Factor Authentication Medusa Ransomware Roger Grimes Know Be4

Story submitted by Fairstory

RATING

6.0

Moderately Fair

Read with skepticism

The article provides a timely and relevant overview of the FBI's warnings about ransomware threats, focusing on the Medusa ransomware gang and the importance of two-factor authentication. It presents accurate information from credible sources, such as the FBI, but lacks direct citations to official documents, affecting its transparency and source quality. The inclusion of Roger Grimes' critique adds some balance, although additional perspectives would enhance the depth of the analysis.

The clarity and readability of the article are generally strong, making it accessible to a broad audience. However, the article could benefit from more detailed explanations of technical terms and a clearer distinction between factual information and opinion. While the article has the potential to influence public opinion and encourage stronger cybersecurity practices, its impact could be amplified by incorporating more actionable insights and diverse expert opinions.

Overall, the article addresses an important issue with significant public interest, but improvements in source transparency and the inclusion of a wider range of perspectives would enhance its credibility and impact.

Accuracy

The story presents several accurate claims, such as the FBI's warning about ransomware threats and the specific mention of the Medusa ransomware gang. The article correctly identifies the FBI's advice on enabling two-factor authentication and other mitigation strategies. However, some claims, like the number of victims impacted by the Medusa gang, require further verification as they are not directly substantiated within the article. Additionally, the mention of a ransomware campaign involving the United States Postal Service is unusual and would need confirmation from reliable sources. The article does not provide direct citations or links to official FBI statements or advisories, which affects its verifiability.

Balance

The article primarily focuses on the FBI's perspective and recommendations, providing a detailed account of their mitigation strategies against ransomware attacks. However, it includes a critical viewpoint from Roger Grimes, who argues that the FBI's advice lacks emphasis on security awareness training, which is important given the role of social engineering in such attacks. While this adds some balance, the article could benefit from additional perspectives, such as those from cybersecurity experts or affected organizations, to provide a more comprehensive view of the issue.

Clarity

The article is generally clear and structured logically, with a focus on the FBI's recommendations and the critique by Roger Grimes. The language is straightforward, making the content accessible to a general audience. However, the article could benefit from a clearer separation of factual information and opinion, as the transition between the FBI's advice and Grimes' critique is somewhat abrupt. Additionally, the inclusion of more background information on the Medusa ransomware gang could enhance understanding.

Source quality

The article relies heavily on information from the FBI and a single expert, Roger Grimes. While the FBI is a credible source for cybersecurity threats, the article does not provide direct links or citations to the original FBI advisory or other primary sources. The inclusion of a quote from Grimes adds some depth, but the lack of diverse sources and direct references to official documents limits the article's reliability and authority. More varied and attributed sources would enhance the credibility of the reporting.

Transparency

The article outlines the FBI's recommendations and Grimes' critique but lacks transparency in terms of providing direct access to the primary sources, such as the official FBI advisory. There is no explanation of the methodology used to gather the information or any acknowledgment of potential conflicts of interest. The absence of direct citations or links to the FBI's statements or reports reduces the transparency of the article, making it difficult for readers to independently verify the claims.