Since the original article, several major data breaches have emerged across different sectors, including exposure of 19 million records in a French government ID agency breach and millions of students' personal data stolen in an education sector incident. Additionally, a separate investigation has revealed that Medusa-adjacent issues extend beyond hospitals, with Missouri regulators now investigating Conduent for allegedly obstructing a state data breach inquiry. These incidents underscore the expanding scope of cybercriminal operations beyond the healthcare sector.
Criminal hackers have locked up patient files at hospitals, and a former FBI leader now wants the U.S. government to treat these attacks the same way it treats terrorism.
Here's what happened: A hacking group called Medusa deployed ransomware (a type of virus that locks your files until you pay money) against the University of Mississippi Medical Center and a New Jersey county government. Doctors couldn't access patient records. Staff couldn't schedule appointments. The attacks forced hospitals to turn away patients and delay surgeries.
The former FBI official's argument is straightforward: these aren't normal crimes. They put lives at risk. When a hospital gets hit, real people suffer—patients miss critical care, emergency rooms jam up, and treatment gets delayed. That looks a lot like a weapon aimed at public safety.
Think of it this way: if someone cuts the brakes on an ambulance, that's terrorism. If hackers lock up the systems that tell paramedics where to go, does that deserve the same label? The FBI official says yes.
Currently, ransomware attacks carry serious criminal charges. But giving them a "terrorism" label would open new legal tools—federal prosecutors could pursue harsher penalties and coordinate with military/intelligence agencies the way they do for other terror threats.
The Medusa gang isn't alone. Hospital ransomware attacks have exploded over the past three years. Criminal groups operate like businesses, targeting healthcare because hospitals often pay quickly (they can't afford downtime when people are dying).
What you should do today: If you work at a hospital or clinic, ask your IT team if they've updated ransomware defenses in the last 90 days. If you're a patient, keep your own medical records backed up—request copies from your doctor and store them safely. For everyone: never open suspicious email links or attachments, especially ones claiming to be security alerts. That's how most ransomware sneaks in.