Tag: crowdstrike
94 articles

CrowdStrike disrupts Glassworm botnet with global takedown
In a major win for cybersecurity, CrowdStrike has successfully dismantled the notorious Glassworm botnet in a global takedown, cutting off its operators from infected machines worldwide. The infected machines now harmlessly connect to a CrowdStrike-controlled IP address, rendering the botnet useless.

CrowdStrike dismantles Glassworm botnet targeting open-source supply chain
In a major win for cybersecurity, CrowdStrike has successfully dismantled the notorious Glassworm botnet, crippling its ability to target the open-source supply chain. By taking down four key servers, CrowdStrike has forced the attackers to regroup and rebuild, buying time for the industry to stay one step ahead.

CrowdStrike and Google Disrupt Glassworm Botnet Infrastructure
In a major win for cybersecurity, a powerful collaboration between CrowdStrike, Google, and the Shadowserver Foundation successfully dismantled the Glassworm botnet by simultaneously taking down all four of its command-and-control channels. This bold move cut off the botnet's operators from infected devices, preventing further malicious activity.

CrowdStrike Disrupts GlassWorm Malware's Global Supply Chain Attack Infrastructure
In a major win for cybersecurity, CrowdStrike teamed up with Google and the Shadowserver Foundation to dismantle the global infrastructure behind the GlassWorm malware attack, crippling its ability to issue commands or deliver new payloads to infected machines. This coordinated operation targeted and neutralized the malware's command-and-control channels, protecting software developers from further exploitation.

AI Exploits Emerge as New Security Threat
As AI use grows, a hidden risk is emerging: malicious inputs can alter model behavior, bypassing safeguards and putting enterprises at risk. This "prompt injection" tactic is like phishing, targeting the link between user and system to wreak havoc.

Cybercrime Groups Exploit Vishing, SSO Abuse in SaaS Extortion Spree
Cybercrime groups are launching lightning-fast extortion attacks within trusted SaaS environments, exploiting vishing and SSO abuse to evade detection and strike with precision. By hiding in plain sight, they're creating significant challenges for defenders trying to keep up.

BlackFile Targets Retail, Hospitality with Extortion Attacks
Meet BlackFile, a notorious extortion group wreaking havoc on the retail and hospitality sectors with high-stakes attacks, demanding seven-figure ransoms from its victims. With a modus operandi that includes impersonation and voice-phishing, this threat actor is using pressure tactics to get what they want.

CrowdStrike Tests Anthropic's Claude Mythos for Accelerated Vulnerability Detection
Imagine slashing the time between discovering a software flaw and fixing it - a new breed of large language models, like Anthropic's Claude Mythos, may hold the key. Early tests with CrowdStrike suggest that AI-powered vulnerability detection can accelerate discovery and bring broader situational awareness to cybersecurity operations.

AI Arms Race Sparks Alarming Cybersecurity Urgency
The AI arms race has ignited a pressing cybersecurity urgency, as threat actors supercharge their attacks with artificial intelligence, leaving organizations scrambling to keep pace. Can we outsmart the machines before it's too late?

CrowdStrike Stunning SGNL Deal Offers Best Identity Shield
CrowdStrike’s $740M acquisition of SGNL flips identity security from login to continuous authorization—pairing SGNL’s real‑time identity signals with CrowdStrike’s telemetry to fix identity hygiene and curb misuse by service accounts, machine IDs and AI agents. It’s a decisive bet that identity, not just authentication, is the new frontline of cyber defense.

CrowdStrike Exclusive SGNL Deal: Best Fix for Identity Risk
Identity risk is the storm on the horizon—and CrowdStrike’s $740M purchase of SGNL promises to be the umbrella, bringing visibility and governance to runaway machine identities like service accounts, CI/CD tokens, and AI agents. If credential sprawl and loose authorization keep you up at night, this deal could be the practical fix that enforces least privilege and shrinks attackers’ paths.

CrowdStrike Must-Have Deal Secures Identity Effortlessly
CrowdStrike’s $740M SGNL move is a must-have play in identity security—shifting the fight from “who are you?” to “what are you allowed to do?” as runaway machine identities like API keys and AI agents open easy paths for attackers. The goal: give enterprises the visibility and governance to find and lock down forgotten or over‑privileged non‑human accounts before they cause breaches.

AWS Targets Security Startups: Exclusive Best Bets
With just two weeks to apply, AWS Targets Security Startups fast-tracks early cloud and AI security founders into a cohort with AWS, CrowdStrike and Nvidia for mentorship, technical integration, and investor introductions. Its a rare chance to turbocharge fundraising and distribution—if youre ready to trade some independence for speed.

Leak Site Ransomware Victims: Alarming 13% Spike Exclusive
Wake-up call: ransomware victims in Europe surged 13% year‑on‑year as criminals adopt stealthy, profit-driven tactics—RATs, data theft and public leak sites—to extract bigger payoffs. Businesses, governments and households need to rethink defenses now before they become the next target.

Self-Replicating Worm: Stunning Threat Hits 180+ Packages
A stark wake-up call: a self-replicating worm has infected 187+ NPM packages, stealing and publicly exposing developer tokens during installs. By weaponizing automated installs and transitive dependencies, it turns every npm install into a potential propagation engine.

self-replicating worm: Shocking, Devastating NPM Breach
Imagine your everyday npm install quietly stealing your keys — researchers traced a self‑replicating worm to at least 187 NPM packages that exfiltrates developer credentials to GitHub each time an infected package is installed. This outbreak shows how fragile the software supply chain is and why immediate credential rotation, strict dependency hygiene, and better package vetting are essential.

at war with Russia: Stunning, Risky Reality for Britain
Former MI5 chief Baroness Manningham‑Buller warns that a string of Kremlin‑linked sabotage, cyberattacks and targeted killings may already amount to an undeclared war with the UK. Her stark question — when hostile acts become war — forces Britain to rethink its defenses, legal rules and the balance between security and civil liberties.

self-replicating worm: Stunning Risk to Dev Supply Chains
A self-replicating worm has infected nearly 200 NPM packages, stealing developer tokens and publishing them to public GitHub repos so each install can expose even more credentials. If you use open-source dependencies, now’s the time to audit builds, rotate keys, and lock down your developer workflows before the next propagation wave hits.

WinRAR vulnerability: Stunning RomCom Risk Exposed
A newly discovered zero-day in WinRAR (CVE-2025-8088) is being weaponized by the RomCom hacking crew, turning a tool used by millions into a malware delivery system. If you use WinRAR, update and patch now—this is a wake-up call about how convenience can become a major security risk.

Malware Campaign Hits Accounting Firm with New Crypter Threat
A recent malware attack on a U.S. accounting firm highlights just how crucial our cybersecurity measures are in todays digital landscape. With sophisticated threats like Ghost Crypt and PureRAT on the rise, it’s a wake-up call for businesses to strengthen their defenses and stay one step ahead of cybercriminals.

Interlock Ransomware Deploys New RAT in Widespread Cyberattack
Interlock ransomware just leveled up—deploying a stealthy new Remote Access Trojan that lets attackers silently steal data and move through networks undetected. It’s a wake-up call for everyone to rethink cybersecurity before it’s too late.

Rise in Identity-Based Attacks Linked to Infostealer Threats
With cyberattacks on the rise, stealthy info-stealer malware and savvy phishing kits are quietly stealing your digital identity—making strong, adaptive security more crucial than ever.

Ingram Micro Resumes Partial Orders After Ransomware Attack
Ingram Micro is cautiously reopening its order lines after a crippling ransomware attack, but long waits and uncertainty remind us just how fragile our global tech supply chains really are.

Streamlining Ticket Creation, Device Identification, and Threat Triage Using Tines Automation
Enhance efficiency with Tines Automation for streamlined ticket creation, precise device identification, and effective threat triage.