As the world is still reeling from the massive IT outage caused by an update from Texas-based cybersecurity firm CrowdStrike, businesses and individuals are being warned to be highly vigilant against scammers and hackers who are seeking to take advantage of the situation. The global incident, which began when an error-laden update was rolled out, has already caused significant disruptions to various sectors including travel, banking, retail, and healthcare. The outage was so widespread that it’s likely that even individuals who have nothing to do with CrowdStrike might be targeted by email scams or phishing attempts.
According to CrowdStrike CEO George Kurtz, “adversaries and bad actors will try to exploit events like this.” In a blog post, Kurtz urged everyone to remain vigilant and ensure that they’re only engaging with official CrowdStrike representatives, warning that the company’s blog and technical support are the only official channels for updates on the situation.
Unfortunately, CrowdStrike’s own customers are not immune to these attacks. On Friday, the company revealed that threat actors were attempting to distribute a malicious ZIP archive named crowdstrike-hotfix.zip, which contains a HijackLoader payload that can grant an attacker control of an infected computer. This ZIP archive is designed to look like a legitimate update, making it a particularly convincing scam.
The following day, CrowdStrike issued another warning, urging customers to “verify they are communicating with CrowdStrike representatives through official channels.” This is crucial, as scammers may attempt to pose as official representatives in order to trick victims into installing malware or revealing sensitive information.
Firms on High Alert as Hackers Exploit Global IT Outage
The US Cybersecurity and Infrastructure Security Agency (CISA) has also issued a statement, warning that cyberthreat actors are continually leveraging the outage to conduct malicious activity, including phishing attempts. CISA is working closely with CrowdStrike and other private sector and government partners to monitor any emerging malicious activity and prevent further exploits.
As a result, it’s essential for individuals and businesses to exercise extreme caution when dealing with emails and messages. With the widespread publicity surrounding the IT outage, it’s likely that scammers and hackers will attempt to capitalize on this event, claiming that an “essential update” is necessary to prevent future issues. However, without a legitimate need to download software or click on a link, it’s best to err on the side of caution and avoid taking any action.
The recent global IT outage caused by CrowdStrike’s update has created a perfect storm for scammers and hackers to exploit. As a result, it’s crucial for individuals and businesses to remain vigilant and exercise extreme caution when dealing with emails and messages. By being aware of these threats and taking preventative measures, we can minimize the risk of falling victim to these attacks and protect our digital security.
