Today > | 1 Medium vulnerabilities   -   You can now download lists of IOCs here!

Global Outage - Threat Actor Activity and Risk Mitigation Strategies

July 22, 2024, 4:43 p.m.

Description

On July 19th, 2024, a faulty update from CrowdStrike caused kernel instability and Blue Screen of Death (BSOD) loops on millions of Windows devices worldwide, leading to major disruptions across industries. While affected parties work on remediation, threat actors are exploiting the situation through phishing, malicious domains, and fake 'hotfixes'. SentinelOne's Live Security Updates operate in isolated user-mode space, avoiding kernel impacts, and undergo rigorous testing before release, mitigating such risks.

Date

Published: July 22, 2024, 4:37 p.m.

Created: July 22, 2024, 4:37 p.m.

Modified: July 22, 2024, 4:43 p.m.

Indicators

cloudstrike.website

c44506fe6e1ede5a104008755abf5b6ace51f1a84ad656a2dccc7f2c39c0eca2

pay.crowdstrife.com

crowdstrikedown.sitecrowdstrike-helpdesk.comcrowdstrike.buzz

crowdstrike.orora.group

crowdstrike.immed-update.com

cdfa4966d7a859b09a411f0d90efbf822b2d6671link.storjshare.io

thecrowdstrike.com

fuckingcrowdstrike.com

crudstrike.com

crowstrike.net

crowstrike.org

crowdstroke.io

crowdstrikeeventshub.com

crowdstrikeodayl.com

crowdstrikeblueteam.com

crowdstrike.help

crowdstrike.com.vc

crowdstrike.cam

crowdstrike.buzz

crowdstrike.bot

crowdstrike.blue

crowdstrike-solutions.nl

crowdstrike-fix.com

crowdstrike-bluescreen.com

crowdstrife.com

croudstrike.org

conflictstrike.com

clownstrike.gg

cccrowdstrike.ee

Attack Patterns

T1487

T1609

T1588

T1189

T1598

T1036

T1566

T1190