Articles from the front lines at Crowdstrike

X

CONTINUE TO SITE >

From The Front Lines

BadRabbit MS17-010 Exploitation Part Two: Elevate Privileges

BadRabbit MS17-010 Exploitation Part Two: Elevate Privileges

Overview This post continues the technical analysis of the BadRabbit ransomware attacks discussed in Part One of this two-part series. Part…

BadRabbit MS17-010 Exploitation Part One: Leak And Control

BadRabbit MS17-010 Exploitation Part One: Leak and Control

Overview On October 23, 2017, CrowdStrike® became aware of a new type of ransomware called BadRabbit. The initial infection occurred via…

CCleaner Stage 2: In-Depth Analysis Of The Payload

CCleaner Stage 2: In-Depth Analysis of the Payload

November 10, 2017
Karan Sood
From The Front Lines

Overview Recently, CrowdStrike® analyzed the backdoor embedded in the legitimate PC cleaning utility CCleaner version 5.33, as reported in the blog…

Visit CrowdStrike At Black Hat 2017

Visit CrowdStrike at Black Hat 2017

This year marks a 20-year milestone for Black Hat, one of the cybersecurity industry’s signature events. Originally an offshoot of the infamous…

NotPetya Technical Analysis Part II: Further Findings And Potential For MBR Recovery

NotPetya Technical Analysis Part II: Further Findings and Potential for MBR Recovery

Update: Due to naming convention consistency in the industry, CrowdStrike is now calling this variant of Petya - NotPetya. Executive Summary This…

NotPetya Technical Analysis – A Triple Threat: File Encryption, MFT Encryption, Credential Theft

NotPetya Technical Analysis – A Triple Threat: File Encryption, MFT Encryption, Credential Theft

Update: Due to naming convention consistency in the industry, CrowdStrike is now calling this variant of Petya - NotPetya. Executive Summary This…

CrowdStrike Protects Against NotPetya Attack

CrowdStrike Protects Against NotPetya Attack

June 28, 2017
Falcon Intelligence Team
From The Front Lines, Research & Threat Intel

Update: Due to naming convention consistency in the industry, CrowdStrike is now calling this variant of Petya - NotPetya. On June 27…

Stopping Cyber “Shakedowns” — How To Protect Against Extortion-Based ECrime

Stopping Cyber “Shakedowns” — How to Protect Against Extortion-Based eCrime

Internet extortion and “datanapping” have become common occurrences, with increasingly high-profile victims ranging from hospitals to Hollywood studios. A new webcast explores…

Defeating Adversaries Requires A Proactive Cybersecurity Strategy

Defeating Adversaries Requires a Proactive Cybersecurity Strategy

“Hope is not a strategy.” While blunt in delivery, the message implied in Vince Lombardi’s famous saying is simple: to win any…

Uncle Sam Gets An Incident Response Plan

Uncle Sam Gets an Incident Response Plan

Once upon a time, when presidential politics were more sedate, the leader of the free world quipped that the nine most terrifying…

1
…
3
4
5
6
7
8
9
10

SUBSCRIBE

Sign up now to receive the latest notifications and updates from CrowdStrike.

Try CrowdStrike Free for 15 Days Get Started with A Free Trial