Kovter is a well known form of clickjacking malware that has been around for years. While it is mostly nuisance malware, it…

Introduction Analysts that perform macOS forensics have had few, if any, artifacts of program execution to rely on during investigations — until…

CrowdStrike® is excited to join more than 17,000 security experts in Las Vegas this August for Black Hat USA, one of the…

Introduction This blog introduces some of the innovative techniques the CrowdStrike Data Science team is using to address the unique challenges inherent…

Update: While this blog post originally covered the Office 365 Activities API, that functionality has been disabled by Microsoft as of Friday,…

Introduction This analysis provides an in-depth view of the Samsam ransomware, which is developed and operated by the actor tracked by CrowdStrike®…

Introduction This blog tells the story of a failed Samba exploitation attempt. The goal was to assess what it would take for…

Defending an organization from today’s sophisticated attacks is no easy task. It often requires security teams to be ready at a moment’s…

Cryptocurrencies are in high demand. The usage and monetary value of Bitcoin, Litecoin, Ethereum, and many others have skyrocketed worldwide. The increase…

The much-anticipated CrowdStrike® Cyber Intrusion Services Casebook for 2017 offers detailed accounts of some of the cases the CrowdStrike Services incident response…