MURKY PANDA: A Trusted-Relationship Threat in the Cloud
Since late 2024, CrowdStrike Counter Adversary Operations has observed significant activity conducted by MURKY PANDA, a…
Falcon Platform Prevents COOKIE SPIDER’s SHAMOS Delivery on macOS
Assessment rescue-mac[.]com https[:]//macostutorial[.]com/iterm2/install[.]sh Recommended Prevention Settings https[:]//macostutorial[.]com/iterm2/update Suspicious process prevention Intelligence-sourced threat prevention Threat Hunting Queries …
CrowdStrike 2025 Threat Hunting Report: AI Becomes a Weapon and a Target
Today’s enterprising adversaries are weaponizing AI to scale operations, accelerate attacks, and target the autonomous AI…
How the CrowdStrike Falcon Platform Drove the Germany-Singapore Team to Success at NATO Locked Shields 2025
The Germany-Singapore team was composed of experts from the German Bundeswehr, Singapore’s Digital and Intelligence Service…
Prescription for Protection: Healthcare Industry Observations from CrowdStrike Investigations
Organizations in the expanding healthcare ecosystem are under mounting pressure to balance business growth, regulatory compliance,…
CrowdStrike 2025 Latin America Threat Landscape Report: A Deep Dive into an Evolving Region
The CrowdStrike 2025 Latin America Threat Landscape Report provides key insights into cyber activity across Central…
May 2025 Patch Tuesday: Five Zero-Days and Five Critical Vulnerabilities Among 72 CVEs
Actively Exploited Zero-Day Vulnerabilities in Windows Common Log File System The CrowdStrike Falcon platform regularly collects…
CrowdStrike Achieves FedRAMP® High Authorization
Securing the Nation’s Most Critical Systems: CrowdStrike Achieves FedRAMP High Authorization In an era where adversaries…
CrowdStrike 2025 Global Threat Report: Beware the Enterprising Adversary
CrowdStrike pioneered the concept of adversary-focused cybersecurity because it’s the most effective way to defend organizations…
Naming Names: How Adversary Taxonomies Strengthen Global Security
For our part, when CrowdStrike launched in 2011, we innovated a cryptonym-based system that yielded names…
CrowdStrike Insider Risk Services Defend Against the Threats Within
Mitigating insider threats isn’t just about identifying insiders but preventing them from exploiting their access. Available…
Recruitment Phishing Scam Imitates CrowdStrike Hiring Process
This logon autostart entry executes a dropped copy of the original malicious downloader, located at: This…
A Look Back: The Evolution of Latin American eCrime Malware in 2024
Kiron: Rust Adoption and Browser Extensions Kiron operators used HTA file naming conventions such as ❉VER…
December 2024 Patch Tuesday: 16 Critical and One Zero-Day Among 71 Vulnerabilities
Zero-Day Vulnerability (CVE-2024-49138) Exploit Observed in the Wild CVE-2024-49138 is a privilege escalation vulnerability within the…
The Rise of Cross-Domain Attacks Demands a Unified Defense
After gaining access, PUNK SPIDER used a service account to log into another network host via…