CrowdStrike has a new guidance hub for dealing with the Windows outage

3 months ago 48

CrowdStrike has published a caller “Remediation and Guidance Hub” that collects details related to its faulty update that crashed 8.5 cardinal Windows computers crossed the globe connected Friday.

The leafage includes method accusation connected what caused the outage, what systems are affected, and CEO George Kurtz’s statement. It contains links to Bitlocker cardinal betterment processes and to assorted third-party vendor pages astir dealing with the outage, arsenic well.

The leafage points to a cognition basal nonfiction (which lone logged-in customers tin access) for utilizing a bootable USB key. Microsoft released specified a instrumentality yesterday that automatically deletes the problematic transmission record that caused machines to bluish screen.

CrowdStrike besides published a blog yesterday informing that menace actors person been taking vantage of the concern to administer malware, utilizing “a malicious ZIP archive named crowdstrike-hotfix.zip.”

The ZIP archive contains a HijackLoader payload that, erstwhile executed, loads RemCos. Notably, Spanish filenames and instructions wrong the ZIP archive bespeak this run is apt targeting Latin America-based (LATAM) CrowdStrike customers.

Later successful the blog:

Following the contented update issue, respective typosquatting domains impersonating CrowdStrike person been identified. This run marks the archetypal observed lawsuit successful which a menace histrion has capitalized connected the Falcon contented content to administer malicious files targeting LATAM-based CrowdStrike customers.  

CrowdStrike says organizations should lone beryllium moving straight with CrowdStrike’s representatives utilizing authoritative channels, and should usage lone the guidance its enactment squad provides.

Read Entire Article