Hackers attempted to lure a journalist with promises of financial freedom
BBC journalist was targeted by hackers offering ransom profits
The gang introduced themselves with links to darknet addresses and forums
MFA bombing transformed online negotiations into an invasive and unsettling confrontation
The concept of an insider threat within cybersecurity is often discussed in abstract terms, a theoretical vulnerability that organizations know exists but rarely confront directly.
But this abstract risk became a tangible reality for BBC cyber correspondent Joe Tidy when he was unexpectedly propositioned by an individual calling themselves Syn, who claimed to represent the Medusa ransomware group.
The unsolicited contact, initiated on the encrypted messaging app Signal, presented a straightforward yet criminal proposal – for Tidy to provide access to the BBC’s internal systems in exchange for a percentage of a future ransom payment.The proposal and lure of lucrative gains
After consulting with senior editorial figures, Tidy engaged with the individual to understand the mechanics of the proposition.
