09.04.2025
2 min
596
Hacker group Medusa announced a large-scale hacking of NASCAR systems, stealing more than 1 terabyte of confidential information. Dozens of screenshots with personal information of employees, financial reports and even drawings of race tracks were published. The attack is accompanied by an ultimatum – 4 million $ for the deletion of data, or its complete leak.
On April 8, 2025, NASCAR appeared on the list of victims on the Medusa resource. To confirm the authenticity of the hack, the hackers published the structure of the stolen files and 33 screenshots with documents containing names, contacts, credentials, financial reports, sponsorship agreements and other internal materials.
The information leak contains files related to engineering, accounting, racing telemetry, employee personal files and track plans. In addition, a countdown has been launched on the Medusa website – NASCAR was given 10 days to respond.
The hackers are demanding $4 million for the destruction of the stolen data, or $100,000 for each day of delay before releasing the information. NASCAR has not yet officially commented or confirmed the leak. Medusa is one of the most active ransomware-as-a-service (RaaS) groups since its emergence in June 2021. Their methods include a double or even triple blackmail scheme: data is not only stolen and encrypted, but also threatened with publication or repeated appeal to victims with an additional ransom demand.
According to the FBI and CISA, Medusa has already attacked more than 300 organizations, including in the energy, transportation, healthcare and education sectors. The group has its own recruitment system through the DarkNet: hackers receive from $100,000 to $1 million for initial access to victim companies. The incident proves once again that organizations need to invest in cybersecurity just like they do in sports, marketing, or engineering. After all, one attack can compromise a system from the inside.
