374/68 Tuesday, September 30, 2025
The Medusa ransomware group has claimed responsibility for an attack on the systems of Comcast Corporation, a major U.S. media and technology company with core businesses in broadband, television, and film. The group alleges it has stolen more than 834.4 gigabytes of data and is demanding a ransom of $1.2 million for deletion of the stolen files. Otherwise, the data may be sold or publicly released.
To support its claims, Medusa published around 20 screenshots purportedly showing internal Comcast files, as well as over 167,000 individual files. These allegedly include financial, product management, and insurance-related data, such as risk assessment reports, product management information, insurance modeling scripts, and claims analysis data. Sample file names include Esur_rerating_verification.xlsx and Claim Data Specifications.xlsm, along with Python and SQL scripts.
Medusa has a history of targeting large U.S. organizations. In April 2025, the group demanded a $4 million ransom from NASCAR, which was later confirmed to have suffered a data leak. Comcast has not yet confirmed or denied the incident. However, if customer or financial data is indeed involved, the company may face regulatory pressure as well as reputational damage.
Source https://hackread.com/medusa-ransomware-comcast-data-breach/
