Meet CrowdStrike’s Adversary of the Month for April: STARDUST CHOLLIMA
STARDUST CHOLLIMA is a targeted intrusion adversary with a likely nexus to the Democratic People’s Republic of Korea (DPRK). This adversary is…
STARDUST CHOLLIMA is a targeted intrusion adversary with a likely nexus to the Democratic People’s Republic of Korea (DPRK). This adversary is…
Despite a parade of issues battling for headlines today, the impending negotiations between the United States and the Democratic People's Republic of…
One of the important topics covered in the CrowdStrike® 2018 Global Threat Report is the increase in supply chain attacks in 2017.…
VENOMOUS BEAR is an advanced, Russia-based adversary that’s been active since at least 2004. Some of it's aliases include Turla, Snake, and Krypton. Recent public…
In continuance of our monthly blog post to introduce a new threat actor, February 2018 features a criminally motivated actor we call…
For the past several years, CrowdStrike® has published a yearly calendar that includes international holidays, working days of the most prevalent threat…
A malicious campaign has been identified targeting suspected victims involved in or supporting the February 2018 Olympic Winter Games in Pyeongchang, South…
In late October and early November, 2017, CrowdStrike® Falcon Intelligence™ observed People’s Republic of China (PRC)-based actors conducting espionage-driven targeted attacks against…
As demonstrated in the previous blog post about decryption of Petya/NotPetya, almost the complete Master File Table (MFT) can be decrypted. In…
On June 27, 2017, a destructive payload dubbed “NotPetya” by researchers, was deployed covertly using a legitimate software package employed by organizations…