Cybersecurity experts and agencies worldwide are warning everyone about a wave of opportunistic hacking attempts linked to the recent global IT outage caused by CrowdStrike. While there is no evidence that the outage itself was due to malicious activity, some hackers are trying to take advantage of the situation.
Hacking Attempts and Fake Scams
Following the IT outage, which disrupted many services, hackers are now pretending to be official representatives from CrowdStrike to scam people. These scammers are sending fake emails, making fraudulent phone calls, and creating fake websites that appear to offer help or software fixes.
George Kurtz, the head of CrowdStrike, has urged people to only use official CrowdStrike channels for updates and support. He said in a blog post, “We know that adversaries and bad actors will try to exploit events like this. Our blog and technical support will continue to be the official channels for the latest updates.”
Troy Hunta well-known cybersecurity expert and creator of the Have I Been Pwned website, echoed this warning. He said that major news events like this IT outage are opportunities for scammers to trick people.
The Australian Signals Directorate (ASD), similar to the UK's GCHQ or the US's NSA, has issued an alert about scammers sending out fake software fixes. Their notice reads, “Alert! We understand a number of malicious websites and unofficial codes are being released claiming to help entities recover.” They are advising IT professionals to only use CrowdStrike's official website for information.
The UK's National Cyber Security Center (NCSC) also warned that there has been a rise in phishing attempts related to the outage. They said that malicious actors are using this situation to trick people into giving away private information or downloading harmful software.
Why Scammers Are Targeting This Outage
Whenever there is a major technology-related news event, hackers often adapt their methods to exploit the fear and uncertainty it creates. This was seen during the Covid-19 pandemic when scammers pretended to offer information or cures for the virus to deceive people.
With the IT outage being a major global news story, hackers are now trying to exploit it by creating fake CrowdStrike websites and sending phishing emails.
Researchers at Secureworks have noted a sharp increase in the number of new websites registered to look like CrowdStrike's official site. These fake sites aim to trick IT managers and individuals into downloading malicious software or giving away personal details.
what should you do
- Be Cautious: If you receive emails or calls claiming to be from CrowdStrike or offering solutions for the outage, be very careful.
- Check Official Channels: Only use the official CrowdStrike website or verified sources for updates and support.
- Be Aware: Both IT managers and individuals should be on high alert for any suspicious activity related to the outage.
By staying vigilant and only using trusted sources, you can protect yourself from these opportunistic scams.