CrowdStrike Content Team
RSA Conference 2021: Action Recap
We offer a sincere thank you to the many RSA Conference 2021 virtual attendees who visited our booth, watched one of our demos or sessions, or participated in one of our events. As you know, the confe[…]
Moving beyond Indicators of Compromise (IOCs)
For the last few years, the security industry has become very enamored with Indicators of Compromise (IOCs) as a way to detect targeted intrusions and adversaries that are flying right past traditiona[…]
Can't Protect Your Data from Ransomware? Think Again.
All too often, I hear from executives of large and small organizations that aside from targeted attacks, impact from ransomware is their number one concern. That impact was starkly highlighted earlier[…]
Unprecedented Announcement by FBI Implicates North Korea in Destructive Attacks
There is a curse that is purported to translate to an old Chinese Proverb - “May you live in interesting times.” These past few weeks have certainly been that. Today we have an unprecedented announcem[…]
Malware-Free Intrusions: Adversary Tricks and CrowdStrike Treats
‘Tis the season for trick-or-treating, so I thought it might be a good time to share some of the new tricks we’re seeing from the land of targeted adversaries in evading existing security defenses and[…]
CrowdStrike Discovers Use of 64-bit Zero-Day Privilege Escalation Exploit (CVE-2014-4113) by Hurricane Panda
Every once in a while an adversary does something unique or interesting that really captures our attention. The majority of the remote access tools we come across generally run with limited privileges[…]
Deep in Thought: Chinese Targeting of National Security Think Tanks
For some time now, CrowdStrike has been working with a number of national security think tanks and human rights organizations on a pro bono basis to help them with their security posture. These organi[…]
*NEW* Community Tool: CrowdStrike Heartbleed Scanner
Since last week, several researchers and security companies have released free web-based scanners for the OpenSSL Heartbleed (CVE-2014-0160) vulnerability independently revealed on April 7th. While th[…]
Actionable Indicators for Detection of Signs of Compromise from Target-related Breaches
A lot of press stories and blogs have been written about the Target breach in the last month after Brian Krebs broke the story on December 20th. However, very little detail has been released up until […]