Scam alerts as fake emails and sites exploit IT outages to target users

0
174

In the wake of the recent global IT outage linked to CrowdStrike, cybersecurity experts and agencies worldwide are issuing warnings about a surge in opportunistic scams. Although there’s no evidence that the outage itself resulted from malicious activity, bad actors are seizing the opportunity to exploit the situation.

Cybersecurity authorities in the UK and Australia are alerting the public to be wary of fraudulent emails, calls, and websites that impersonate official channels. CrowdStrike CEO George Kurtz emphasized the importance of verifying the authenticity of communication before downloading any fixes. “We know that adversaries and bad actors will try to exploit events like this,” Kurtz said in a blog post. “Our blog and technical support will continue to be the official channels for the latest updates.”

Troy Hunt, a cybersecurity expert and creator of the “Have I Been Pwned” website, echoed these concerns. “An incident like this that has commanded so many headlines and has people worried is a gift to scammers,” Hunt noted.

The Australian Signals Directorate (ASD) has issued a warning about hackers distributing fake software fixes under the guise of CrowdStrike support. “Alert! We understand a number of malicious websites and unofficial code are being released claiming to help entities recover,” the ASD’s notice warns. The agency advises IT professionals to use only CrowdStrike’s official website for information and assistance.

Similarly, the UK’s National Cyber Security Centre (NCSC) has urged heightened vigilance against phishing attempts. “An increase in phishing referencing this outage has already been observed, as opportunistic malicious actors seek to take advantage of the situation,” the NCSC stated.

The rise in CrowdStrike-themed domain registrations and fake websites aims to deceive IT managers and the public into downloading malicious software or disclosing sensitive information. Secureworks researchers have noted a significant increase in such activities.

Experts advise caution, emphasizing that both IT managers and individuals should rely solely on official CrowdStrike channels for information and support.

Author profile
Paraluman P. Funtanilla
Contributing Editor

Paraluman P. Funtanilla is Tutubi News Magazine's Marketing Specialist and is a Contributing Editor.  She finished her degree in Communication Arts in De La Salle Lipa. She has worked as a Digital Marketer for start-up businesses and small business spaces for the past two years. She has earned certificates from Coursera on Brand Management: Aligning Business Brand and Behavior and Viral Marketing and How to Craft Contagious Content. She also worked with Asia Express Romania TV Show.