* . *
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Sunday, May 11, 2025
Earth-News
  • Home
  • Business
  • Entertainment
    Free Flowin’ Fest brings entertainment to Pascagoula’s Beach Park – WLOX

    Experience the Excitement: Free Flowin’ Fest Lights Up Pascagoula’s Beach Park!

    ‘Experimental entertainment venue’ sets sights on Austin area – MySA

    ‘Experimental entertainment venue’ sets sights on Austin area – MySA

    Taylor Swift’s team calls subpoena in Blake Lively-Justin Baldoni case ‘tabloid clickbait’ – Yahoo

    Taylor Swift’s Team Slams Subpoena in Blake Lively-Justin Baldoni Case as ‘Tabloid Clickbait

    The Weeknd made the apocalypse sexy at his 2025 tour launch in Arizona – Yahoo

    The Weeknd Turns Up the Heat at His 2025 Tour Launch in Arizona!

    Flutter Entertainment eyes U.S. prediction markets amid growing interest – Sports Business Journal

    Flutter Entertainment Sets Its Sights on U.S. Prediction Markets as Interest Soars

    SXSW Rom-Com ‘I Really Love My Husband’ Acquired for U.S. Release – Variety

    Heartfelt Romance: ‘I Really Love My Husband’ Set to Captivate U.S. Audiences!

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    Well completions per location more than double in Lower 48 states as technology advances – U.S. Energy Information Administration (EIA) (.gov)

    Revolutionizing Oil Production: Lower 48 States See Doubling of Well Completions Thanks to Technological Breakthroughs!

    Officials announce massive project that could reshape electric vehicle technology: ‘This is exactly the type of investment that will help us grow the economy’ – Yahoo Finance

    Game-Changer Ahead: Major Investment Set to Transform Electric Vehicle Technology and Boost the Economy!

    Federal agents raid Dymeng Technology Solutions in St. Augustine – Action News Jax

    Federal Agents Storm Dymeng Technology Solutions in St. Augustine: What You Need to Know

    SoundHound’s Amelia 7.0 Platform Delivers Agentic AI With Category Leading Voice Technology – Business Wire

    Unleashing the Future: SoundHound’s Amelia 7.0 Revolutionizes Voice Technology with Agentic AI

    Comings and goings: MPT hires VP of technology, NPR announces changes to Business Desk – Current – For people in public media

    Exciting Leadership Changes: MPT Welcomes New VP of Technology and NPR Revamps Business Desk!

    Harnessing emerging technologies to power a small business – The Oaklandside

    Unlocking Success: How Emerging Technologies Can Transform Your Small Business

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
  • Home
  • Business
  • Entertainment
    Free Flowin’ Fest brings entertainment to Pascagoula’s Beach Park – WLOX

    Experience the Excitement: Free Flowin’ Fest Lights Up Pascagoula’s Beach Park!

    ‘Experimental entertainment venue’ sets sights on Austin area – MySA

    ‘Experimental entertainment venue’ sets sights on Austin area – MySA

    Taylor Swift’s team calls subpoena in Blake Lively-Justin Baldoni case ‘tabloid clickbait’ – Yahoo

    Taylor Swift’s Team Slams Subpoena in Blake Lively-Justin Baldoni Case as ‘Tabloid Clickbait

    The Weeknd made the apocalypse sexy at his 2025 tour launch in Arizona – Yahoo

    The Weeknd Turns Up the Heat at His 2025 Tour Launch in Arizona!

    Flutter Entertainment eyes U.S. prediction markets amid growing interest – Sports Business Journal

    Flutter Entertainment Sets Its Sights on U.S. Prediction Markets as Interest Soars

    SXSW Rom-Com ‘I Really Love My Husband’ Acquired for U.S. Release – Variety

    Heartfelt Romance: ‘I Really Love My Husband’ Set to Captivate U.S. Audiences!

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    Well completions per location more than double in Lower 48 states as technology advances – U.S. Energy Information Administration (EIA) (.gov)

    Revolutionizing Oil Production: Lower 48 States See Doubling of Well Completions Thanks to Technological Breakthroughs!

    Officials announce massive project that could reshape electric vehicle technology: ‘This is exactly the type of investment that will help us grow the economy’ – Yahoo Finance

    Game-Changer Ahead: Major Investment Set to Transform Electric Vehicle Technology and Boost the Economy!

    Federal agents raid Dymeng Technology Solutions in St. Augustine – Action News Jax

    Federal Agents Storm Dymeng Technology Solutions in St. Augustine: What You Need to Know

    SoundHound’s Amelia 7.0 Platform Delivers Agentic AI With Category Leading Voice Technology – Business Wire

    Unleashing the Future: SoundHound’s Amelia 7.0 Revolutionizes Voice Technology with Agentic AI

    Comings and goings: MPT hires VP of technology, NPR announces changes to Business Desk – Current – For people in public media

    Exciting Leadership Changes: MPT Welcomes New VP of Technology and NPR Revamps Business Desk!

    Harnessing emerging technologies to power a small business – The Oaklandside

    Unlocking Success: How Emerging Technologies Can Transform Your Small Business

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
Earth-News
No Result
View All Result
Home Technology

Scam CrowdStrike domains growing in volume

July 30, 2024
in Technology
Scam CrowdStrike domains growing in volume
Share on FacebookShare on Twitter

Hundreds of malicious domains exploiting CrowdStrike’s branding are appearing all over the web in the wake of the 19 July outage. Experts from Akamai share some noteworthy examples, along with guidance on how to avoid getting caught out


Alex Scroxton

By

Alex Scroxton,
Security Editor

Published: 29 Jul 2024 15:18

As global efforts to recover and learn from the Friday 19 July CrowdStrike incident continue, cyber criminals and scammers are predictably lurking on the fringes of the discourse, picking off unsuspecting victims, supported by over newly created malicious domains associated with CrowdStrike’s branding.

This is according to web security specialist Akamai, which said its researchers have identified more than 180 such domains – the true number is likely higher – including one that was ranked in the top 200,000 sites for associated keywords.

The top sectors targeted by these websites appear to be charities and non-profit organisations, and education providers, both of which are highly targeted by malicious actors ordinarily as they are comparatively less likely to have implemented, or to be able to afford in many instances, appropriate cyber security training or defensive measures.

Writing on the firm’s website, Akamai’s Tricia Howard said that as was often the case with newsworthy events, threat actors had immediately attempted to exploit the situation, and the extent and impact of the CrowdStrike incident, which caused millions of Windows devices to turn blue, and prompted disconcerted users – many of them without a background in IT or security – to hunt for answers wherever they could find them, putting them at great risk of social engineering.

Akamai’s teams analysed reams of data drawn from its global edge network to identify the top malicious domains used for CrowdStrike incident scams and other exploits – including the distribution of wiper and infostealing malware, and remote access Trojans (RATs).

The most widely used domains all leveraged CrowdStrike’s branding to some degree, and many purported to offer either information or solutions to the incident. These included domains such as crowdstrike-bsod.com, crowdstrikefix.com, crowdstrike-helpdesk.com, microsoftcrowdstrike.com and crowdstrikeupdate.com.

One domain observed even appeared to exploit the WhatIs family of websites owned and operated by Computer Weekly’s parent TechTarget, using whatiscrowdstrike.com.

According to Howard, the majority of the domains Akamai uncovered carry the .com top level domain (TLD), lending them a subtle authority, and deployed common keywords such as helpdesk or update that are likely being frequently used by people seeking information. In such a way, their backers are able to feign legitimacy by pretending to offer, for example, technical or legal support.

“If you are affected by the outage and are looking for information, we recommend that you consult credible sources such as CrowdStrike or Microsoft. Although other outlets may seem to have more up-to-date information, it may not be accurate – or worse, the site may have a malignant purpose,” wrote Howard.

“It is likely we will see more phishing attempts associated with this issue beyond the time when every device is remediated. A simple scroll through social media can provide an attacker with a sense of which brands generate the most heightened emotions and which are ripe to impersonate for malevolent gain.

“This is an attacker’s job, and it’s important to remember that. Malicious campaign operations function just as we do in legitimate corporations: the victims are their ‘customers,’ and the varied tactics presented in this post show how ‘plugged in’ to their customers they are. They know how to effectively diversify their portfolio to ensure they end up with money in the bank,” she said.

Resilient and convincing infrastructure

To reinforce the point, and to demonstrate how hard it can be for individuals to pick out dodgy websites amid the noise of a standard web search, Howard explained that such phishing campaigns often demonstrate remarkably resilient infrastructure, orchestrated by “professionals” with skills that in some cases rival those found in an enterprise.

Many of the scam sites will also include fairly standard measures that people will be well-used to seeing on secure domains, such as SSL validation. Others may even redirect at some point to the actual CrowdStrike website.

The most sophisticated campaigns will even have failover and obfuscation mechanisms built in, and their backers can quickly change their appearance.

Additionally, the Akamai team believes that least one of the observed domains seen exploiting CrowdStrike appears to be part of a large phishing network. This site, tracked as crowdstrikeclaim.com, stood out to the researchers for its exploitation not just of CrowdStrike, but of a genuine New York law firm that has been involved in real-life class action lawsuits.

The domain contained an embedded Facebook ID known to be malicious, which at one time linked to covid19-business-help.qualified-case.com, a malicious site taking advantage of US government aid programmes during the pandemic. That website in turn contains another embedded Facebook ID linking to as many as 40 other malicious sites.

Mitigating the phish

For ordinary individuals who may find themselves on a CrowdStrike-linked page, Akamai’s advice is to check for a number of indicators of ill intent. This can include looking for the certificate and domain issuer when accessing over HTTPS; avoiding any domains that request sensitive information, such as credit card details; and ignore and delete any emails that claim to offer help. The most effective solution, however, remains to only follow advice and remediation steps from CrowdStrike itself.

Security pros and IT admins can also take additional steps, including to block known and related indicators of compromise (IoCs) – Akamai’s list is available now on GitHub – and to perform a lateral movement gap analysis, or adversary emulation.

Howard noted that financially motivated cyber criminals will look for any opportunity to drop ransomware, and although the CrowdStrike incident is not linked to a zero-day vulnerability, she pointed out that there are still potential ways in for an attacker who now knows what technology, i.e. CrowdStrike, their potential victim is using in its cyber stack.

“This could become relevant in the event that a future CVE is discovered within the Falcon product. Attackers are only getting more sophisticated, and each additional piece of the tech stack puzzle they have makes that puzzle easier to solve,” she warned.

Read more on Hackers and cybercrime prevention


CrowdStrike outage underscores software testing dilemmas

BethPariseau

By: Beth Pariseau


CrowdStrike: 97% of Windows sensors back online after outage

AlexanderCulafi

By: Alexander Culafi


CrowdStrike outage explained: What caused it and what’s next

SeanKerner

By: Sean Kerner


CrowdStrike disaster exposes a hard truth about IT

PatrickThibodeau

By: Patrick Thibodeau

>>> Read full article>>>
Copyright for syndicated content belongs to the linked Source : Computer Weekly – https://www.computerweekly.com/news/366599253/Scam-CrowdStrike-domains-growing-in-volume

Tags: CrowdStrikeDomainstechnology
Previous Post

CrowdStrike says most Falcon sensors now up and running

Next Post

UK government sets up AI action plan unit

How Dartmouth Has Avoided Trump’s Retribution So Far – The New York Times

How Dartmouth Has Skillfully Navigated Trump’s Retribution

May 11, 2025
Well completions per location more than double in Lower 48 states as technology advances – U.S. Energy Information Administration (EIA) (.gov)

Revolutionizing Oil Production: Lower 48 States See Doubling of Well Completions Thanks to Technological Breakthroughs!

May 11, 2025
Appleton area high school sports results for Saturday, May 10 – The Post-Crescent

Exciting Highlights from Appleton Area High School Sports on May 10!

May 11, 2025
Two decades of bacterial ecology and evolution in a freshwater lake – Nature

Two decades of bacterial ecology and evolution in a freshwater lake – Nature

May 11, 2025
NIH guts its first and largest study centered on women – Science | AAAS

Groundbreaking Women’s Health Study Faces Major Cuts: What It Means for the Future

May 11, 2025
Eggs are less likely to crack when dropped on their side, according to science – NBC News

Science Reveals: Dropping Eggs on Their Side Reduces Cracking Risk!

May 11, 2025
A letter to Mom: I am more like you than you think – Lifestyle.INQ

A letter to Mom: I am more like you than you think – Lifestyle.INQ

May 11, 2025
Zara: Inside the secretive world of the fashion brand – BBC

Unveiling Zara: A Deep Dive into the Enigmatic Fashion Empire

May 11, 2025
Trump’s team is finally meeting with China. The future of the global economy is riding on its success – CNN

Trump’s Team Engages with China: A Pivotal Moment for the Global Economy

May 11, 2025
Free Flowin’ Fest brings entertainment to Pascagoula’s Beach Park – WLOX

Experience the Excitement: Free Flowin’ Fest Lights Up Pascagoula’s Beach Park!

May 11, 2025

Categories

Archives

May 2025
MTWTFSS
 1234
567891011
12131415161718
19202122232425
262728293031 
« Apr    
Earth-News.info

The Earth News is an independent English-language daily published Website from all around the World News

Browse by Category

  • Business (20,132)
  • Ecology (600)
  • Economy (612)
  • Entertainment (21,525)
  • General (15,211)
  • Health (9,654)
  • Lifestyle (617)
  • News (22,149)
  • People (615)
  • Politics (620)
  • Science (15,834)
  • Sports (21,123)
  • Technology (15,603)
  • World (602)

Recent News

How Dartmouth Has Avoided Trump’s Retribution So Far – The New York Times

How Dartmouth Has Skillfully Navigated Trump’s Retribution

May 11, 2025
Well completions per location more than double in Lower 48 states as technology advances – U.S. Energy Information Administration (EIA) (.gov)

Revolutionizing Oil Production: Lower 48 States See Doubling of Well Completions Thanks to Technological Breakthroughs!

May 11, 2025
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

Go to mobile version