mastodon.ie

0 posts0 participants0 posts today

heise online EnglishBSI confirms workaround for CrowdStrike and Azure outagesAccording to the BSI, manually deleting a file fixes startup problems on Windows computers with CrowdStrike software. Microsoft Azure is also causing problems.<a href="https://www.heise.de/en/news/BSI-confirms-workaround-for-CrowdStrike-and-Azure-outages-9807466.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.heise.de/en/news/BSI-confirms-workaround-for-CrowdStrike-and-Azure-outages-9807466.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</a><a href="https://social.heise.de/tags/BSI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BSI</a> <a href="https://social.heise.de/tags/Crowdstrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Crowdstrike</a> <a href="https://social.heise.de/tags/IT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IT</a> <a href="https://social.heise.de/tags/MicrosoftAzure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MicrosoftAzure</a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Security</a> <a href="https://social.heise.de/tags/Windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Windows</a> <a href="https://social.heise.de/tags/Wirtschaft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Wirtschaft</a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#news</a>

AndiMannICYMI: on the latest <a href="https://masto.ai/tags/TechstrongTV" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TechstrongTV</a> I join the Gang to go deep on <a href="https://masto.ai/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Google</a> <a href="https://masto.ai/tags/acquisition" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#acquisition</a> of <a href="https://masto.ai/tags/CNAP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CNAP</a> (<a href="https://masto.ai/tags/cloud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cloud</a> <a href="https://masto.ai/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>) with <a href="https://masto.ai/tags/Wiz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Wiz</a>, esp. how it hits <a href="https://masto.ai/tags/AWS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AWS</a>, <a href="https://masto.ai/tags/Azure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Azure</a>, <a href="https://masto.ai/tags/Cisco" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cisco</a>, <a href="https://masto.ai/tags/Splunk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Splunk</a>, <a href="https://masto.ai/tags/Crowdstrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Crowdstrike</a>, <a href="https://masto.ai/tags/PANW" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PANW</a>, ++. Just don't call it <a href="https://masto.ai/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a>!Plus, <a href="https://masto.ai/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> is failing, even for religion!<a href="https://techstrong.tv/videos/videos/techstrong-gang-march-19-2025" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://techstrong.tv/videos/videos/techstrong-gang-march-19-2025</a>

AndiMannICYMI, on the latest <a href="https://masto.ai/tags/TechstrongTV" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TechstrongTV</a> I join the Gang to go deep on <a href="https://masto.ai/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Google</a> <a href="https://masto.ai/tags/acquisition" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#acquisition</a> of <a href="https://masto.ai/tags/CNAP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CNAP</a> (<a href="https://masto.ai/tags/cloud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cloud</a> <a href="https://masto.ai/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>) with <a href="https://masto.ai/tags/Wiz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Wiz</a>, esp. how it hits <a href="https://masto.ai/tags/AWS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AWS</a>, <a href="https://masto.ai/tags/Azure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Azure</a>, <a href="https://masto.ai/tags/Cisco" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cisco</a>, <a href="https://masto.ai/tags/Splunk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Splunk</a>, <a href="https://masto.ai/tags/Crowdstrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Crowdstrike</a>, <a href="https://masto.ai/tags/PANW" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PANW</a>, ++. Just don't call it <a href="https://masto.ai/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a>!Plus, <a href="https://masto.ai/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> is failing, even for religion!<a href="https://techstrong.tv/videos/videos/techstrong-gang-march-19-2025" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://techstrong.tv/videos/videos/techstrong-gang-march-19-2025</a>

OTX BotShedding light on the ABYSSWORKER driverThe ABYSSWORKER driver is a malicious tool used in conjunction with MEDUSA ransomware to disable anti-malware systems. It employs a HEARTCRYPT-packed loader and a revoked certificate-signed driver to target and silence EDR vendors. The driver imitates a legitimate CrowdStrike Falcon driver and uses obfuscation techniques to hinder analysis. It provides various functionalities including file manipulation, process and driver termination, and EDR system disabling. The driver's capabilities include removing callbacks, replacing driver functions, killing system threads, and detaching mini-filter devices. It uses unconventional methods like creating IRPs from scratch to perform file operations. The malware's sophisticated approach demonstrates the evolving tactics of cybercriminals in evading detection and disabling security measures.Pulse ID: 67dc31a079ea6b0ac92136ae Pulse Link: <a href="https://otx.alienvault.com/pulse/67dc31a079ea6b0ac92136ae" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://otx.alienvault.com/pulse/67dc31a079ea6b0ac92136ae</a> Pulse Author: AlienVault Created: 2025-03-20 15:17:52Be advised, this data is unverified and should be considered preliminary. Always do further verification.<a href="https://social.raytec.co/tags/CrowdStrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CrowdStrike</a> <a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://social.raytec.co/tags/EDR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EDR</a> <a href="https://social.raytec.co/tags/ICS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ICS</a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InfoSec</a> <a href="https://social.raytec.co/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Malware</a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OTX</a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenThreatExchange</a> <a href="https://social.raytec.co/tags/RAT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RAT</a> <a href="https://social.raytec.co/tags/RansomWare" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RansomWare</a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#bot</a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AlienVault</a>

AndiMannSuper new drop from <a href="https://masto.ai/tags/TechstrongTV" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TechstrongTV</a>! I join the Gang to go deep on <a href="https://masto.ai/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Google</a> <a href="https://masto.ai/tags/acquisition" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#acquisition</a> of <a href="https://masto.ai/tags/CNAP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CNAP</a> (<a href="https://masto.ai/tags/cloud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cloud</a> <a href="https://masto.ai/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>) with <a href="https://masto.ai/tags/Wiz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Wiz</a>, esp. how it hits <a href="https://masto.ai/tags/AWS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AWS</a>, <a href="https://masto.ai/tags/Azure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Azure</a>, <a href="https://masto.ai/tags/Cisco" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cisco</a>, <a href="https://masto.ai/tags/Splunk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Splunk</a>, <a href="https://masto.ai/tags/Crowdstrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Crowdstrike</a>, <a href="https://masto.ai/tags/PANW" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PANW</a>, ++. Just don't call it <a href="https://masto.ai/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a>!Plus, <a href="https://masto.ai/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> is failing, even for religion!<a href="https://techstrong.tv/videos/videos/techstrong-gang-march-19-2025" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://techstrong.tv/videos/videos/techstrong-gang-march-19-2025</a>

Tim Hergert<a href="https://infosec.exchange/@FritzAdalis" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@FritzAdalis</a> <a href="https://infosec.exchange/@jerry" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@jerry</a> "Baghdad Bob" gets put into cold storage and is brought out on occasions where his level of obliviousness is appropriate. For example - explaining the <a href="https://infosec.exchange/tags/CrowdStrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CrowdStrike</a> incident which was neither cyber, nor a security incident as it turns out.

Abimelech B. 🐧🇩🇪| wörk ™️<a href="https://mastodon.social/@ip6li" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@ip6li</a> <a href="https://social.heise.de/@heiseonline" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@heiseonline</a> Wenn <a href="https://fulda.social/tags/crowdstrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#crowdstrike</a> das kann, dann kann <a href="https://fulda.social/tags/russland" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#russland</a> das sicher auch. <a href="https://fulda.social/tags/windowsfree" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#windowsfree</a>

Pyrzout :vm:26 New Threat Groups Spotted in 2024: CrowdStrike – Source: www.securityweek.com <a href="https://ciso2ciso.com/26-new-threat-groups-spotted-in-2024-crowdstrike-source-www-securityweek-com/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://ciso2ciso.com/26-new-threat-groups-spotted-in-2024-crowdstrike-source-www-securityweek-com/</a> <a href="https://social.skynetcloud.site/tags/rssfeedpostgeneratorecho" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rssfeedpostgeneratorecho</a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurityNews</a> <a href="https://social.skynetcloud.site/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Malware</a>&Threats <a href="https://social.skynetcloud.site/tags/securityweekcom" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#securityweekcom</a> <a href="https://social.skynetcloud.site/tags/securityweek" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#securityweek</a> <a href="https://social.skynetcloud.site/tags/CrowdStrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CrowdStrike</a> <a href="https://social.skynetcloud.site/tags/Report" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Report</a>

Pyrzout :vm:26 New Threat Groups Spotted in 2024: CrowdStrike <a href="https://www.securityweek.com/26-new-threat-groups-spotted-in-2024-crowdstrike/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.securityweek.com/26-new-threat-groups-spotted-in-2024-crowdstrike/</a> <a href="https://social.skynetcloud.site/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Malware</a>&Threats <a href="https://social.skynetcloud.site/tags/CrowdStrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CrowdStrike</a> <a href="https://social.skynetcloud.site/tags/Report" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Report</a>

BSINach den weltweiten Computerstörungen, die im Sommer 2024 durch ein fehlerhaftes Update einer Cybersicherheitslösung verursacht wurden, haben wir als BSI gemeinsam mit <a href="https://social.bund.de/tags/Crowdstrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Crowdstrike</a> und <a href="https://social.bund.de/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> den Vorfall aufgearbeitet. Mehr dazu in unserer Pressemitteilung: 👉 <a href="https://www.bsi.bund.de/dok/1138130" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.bsi.bund.de/dok/1138130</a>

Frau mit Fahrrad 🚴🏼‍♀️- Arbeitsrechner an. - "Wir steigen auf <a href="https://ruhr.social/tags/crowdstrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#crowdstrike</a> um, das ist kostengünstiger"*roflnd gesendet

Moritz Poldrack :arch:<a href="https://strangeplace.me/@emag" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@emag</a> <a href="https://beige.party/@roknrol" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@roknrol</a> malicious compliance is the way to go. Was accused by HR of cheating on my timesheet, and that "the rules apply to everyone" (i entered the building at 8 am, not 7:57), thus I made sure to also leave on time when <a href="https://fosstodon.org/tags/CrowdStrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CrowdStrike</a> crowdfucked the company

d33p.jsFiddling around with jamfnow and crowdstrike. Is there any way to install falcon automatically? Maybe via profiles? I tried to find one, but the crowdstrike docs seem to be incomplete.Could anyone push me in the right direction?<a href="https://infosec.exchange/tags/crowdstrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#crowdstrike</a> <a href="https://infosec.exchange/tags/jamf" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#jamf</a> <a href="https://infosec.exchange/tags/jamfnow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#jamfnow</a> <a href="https://infosec.exchange/tags/falcon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#falcon</a> <a href="https://infosec.exchange/tags/fedihelp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fedihelp</a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a>

adaMarketing gone mad. No way I'm dealing with them again. Not for a down under big purple anyway. <a href="https://beige.party/tags/crowdstrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#crowdstrike</a>

adaIs a bit of clarity too much to ask?<a href="https://beige.party/tags/crowdstrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#crowdstrike</a>

buheratorOK I think this (via <a class="u-url mention" href="https://infosec.exchange/@cR0w" rel="nofollow noopener noreferrer" target="_blank">@cR0w</a>) deserves some more attention ( <a class="hashtag" href="https://infosec.place/tag/crowdstrike" rel="nofollow noopener noreferrer" target="_blank">#CrowdStrike</a> CVE-2025-1146): <a href="https://www.crowdstrike.com/security-advisories/cve-2025-1146/" rel="nofollow noopener noreferrer" target="_blank">https://www.crowdstrike.com/security-advisories/cve-2025-1146/</a> In short, Crowd Strike agents on Linux can be MitM'd when they connect to their mothership (CS cloud). My first Q is: what exactly is delivered to Falcon sensors from the CS cloud? I present my second Q as a meme for higher reach:

heise online EnglishCrowdstrike fiasco: New details on the fatal update, BSI warns of attacksThe root of all evil has a name: Channel File 291 has caused massive IT outages worldwide. Meanwhile, the BSI warns against CrowdStrike phishing.<a href="https://www.heise.de/en/news/Crowdstrike-fiasco-New-details-on-the-fatal-update-BSI-warns-of-attacks-9808131.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.heise.de/en/news/Crowdstrike-fiasco-New-details-on-the-fatal-update-BSI-warns-of-attacks-9808131.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</a><a href="https://social.heise.de/tags/BSI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BSI</a> <a href="https://social.heise.de/tags/Crowdstrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Crowdstrike</a> <a href="https://social.heise.de/tags/MicrosoftAzure" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MicrosoftAzure</a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Security</a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#news</a>

heise online EnglishCrowdStrike outages: Microsoft releases recovery toolMicrosoft has published an image for USB sticks that can be used to restore affected systems. Provided you have the BitLocker key. <a href="https://www.heise.de/en/news/CrowdStrike-outages-Microsoft-releases-recovery-tool-9808510.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.heise.de/en/news/CrowdStrike-outages-Microsoft-releases-recovery-tool-9808510.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</a><a href="https://social.heise.de/tags/Crowdstrike" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Crowdstrike</a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Security</a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#news</a>

Recent searches

Search options

Administered by:

Server stats:

#crowdstrike