Microsoft тестирует Быстрое Машинное Восстановление позволяющее восстанавливать компьютер с ошибками при загрузке

Новая функция призвана предотвратить широкомасштабные сбои, подобные тому, который был вызван обновлением Crowdstrike.

https://tefida.com/microsoft-tests-quick-machine-recovery-to-restore-pcs-that-cant-boot/

#microsoft #quickmachinerecovery #windows11 #61203653 #windowsinsiderpreview #crowdstrike #bsod #windowsupdate #itадминистраторы #новостиit #tefidacom

CrowdStrike (CRWD) maintains a competitive edge in cybersecurity with robust catalysts that challenge rivals. As threats evolve, staying informed is crucial. Are your defenses up to date? #Cybersecurity #Privacy #CrowdStrike

Read more: https://short.steelefortress.com/a5fyze

[Перевод] CrowdStrike — 2025 — Global Threat Report (Отчет о глобальных угрозах) — Введение

Введение из отчета по глобальным угрозам от CrowdStrike Отчет о глобальных угрозах CrowdStrike 2025 анализирует ключевые тенденции в киберугрозах за 2024 год, подчеркивая растущую сложность и организованность атак. Основное внимание уделяется концепции «предприимчивого противника», который использует передовые технологии, включая генеративный ИИ, для усиления атак.

https://habr.com/ru/articles/896276/

BSI confirms workaround for CrowdStrike and Azure outages

According to the BSI, manually deleting a file fixes startup problems on Windows computers with CrowdStrike software. Microsoft Azure is also causing problems.

https://www.heise.de/en/news/BSI-confirms-workaround-for-CrowdStrike-and-Azure-outages-9807466.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

ICYMI: on the latest #TechstrongTV I join the Gang to go deep on #Google #acquisition of #CNAP (#cloud #cybersecurity) with #Wiz, esp. how it hits #AWS, #Azure, #Cisco, #Splunk, #Crowdstrike, #PANW, ++. Just don't call it #DevSecOps!

Plus, #AI is failing, even for religion!

https://techstrong.tv/videos/videos/techstrong-gang-march-19-2025

ICYMI, on the latest #TechstrongTV I join the Gang to go deep on #Google #acquisition of #CNAP (#cloud #cybersecurity) with #Wiz, esp. how it hits #AWS, #Azure, #Cisco, #Splunk, #Crowdstrike, #PANW, ++. Just don't call it #DevSecOps!

Plus, #AI is failing, even for religion!

https://techstrong.tv/videos/videos/techstrong-gang-march-19-2025

Shedding light on the ABYSSWORKER driver

The ABYSSWORKER driver is a malicious tool used in conjunction with MEDUSA ransomware to disable anti-malware systems. It employs a HEARTCRYPT-packed loader and a revoked certificate-signed driver to target and silence EDR vendors. The driver imitates a legitimate CrowdStrike Falcon driver and uses obfuscation techniques to hinder analysis. It provides various functionalities including file manipulation, process and driver termination, and EDR system disabling. The driver's capabilities include removing callbacks, replacing driver functions, killing system threads, and detaching mini-filter devices. It uses unconventional methods like creating IRPs from scratch to perform file operations. The malware's sophisticated approach demonstrates the evolving tactics of cybercriminals in evading detection and disabling security measures.

Pulse ID: 67dc31a079ea6b0ac92136ae
Pulse Link: https://otx.alienvault.com/pulse/67dc31a079ea6b0ac92136ae
Pulse Author: AlienVault
Created: 2025-03-20 15:17:52

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

ICYMI, on the latest #TechstrongTV I join the Gang to go deep on #Google #acquisition of #CNAP (#cloud #cybersecurity) with #Wiz, esp. how it hits #AWS, #Azure, #Cisco, #Splunk, #Crowdstrike, #PANW, ++. Just don't call it #DevSecOps!

Plus, #AI is failing, even for religion!

https://techstrong.tv/videos/videos/techstrong-gang-march-19-2025

Super new drop from #TechstrongTV! I join the Gang to go deep on #Google #acquisition of #CNAP (#cloud #cybersecurity) with #Wiz, esp. how it hits #AWS, #Azure, #Cisco, #Splunk, #Crowdstrike, #PANW, ++. Just don't call it #DevSecOps!

Plus, #AI is failing, even for religion!

https://techstrong.tv/videos/videos/techstrong-gang-march-19-2025

Friday's used to be relaxing. Now they're spent wondering how to build adhoc tables in logscale so I can explain why cmd - leads to a multi-stage malware deployment.
#crowdstrike #threathunting

Cyberbro has now a #crowdstrike engine to get device count and #CTI data

Just explored Falcon RTR (Real Time Response) and it’s super fun to use with Powershell scripts!

2024: 79% of cyber intrusions were malware-free, up from 40% in 2019. Voice phishing has overtaken phishing as the top first access method. #CyberSecurity #CrowdStrike #VoicePhishing #MalwareFree #Phishing #CyberTrends #DataSecurity #ThreatDetection #TechNews

Nach den weltweiten Computerstörungen, die im Sommer 2024 durch ein fehlerhaftes Update einer Cybersicherheitslösung verursacht wurden, haben wir als BSI gemeinsam mit #Crowdstrike und #Microsoft den Vorfall aufgearbeitet.

Mehr dazu in unserer Pressemitteilung: https://www.bsi.bund.de/dok/1138130

Fiddling around with jamfnow and crowdstrike. Is there any way to install falcon automatically? Maybe via profiles? I tried to find one, but the crowdstrike docs seem to be incomplete.

Could anyone push me in the right direction?

Marketing gone mad.

No way I'm dealing with them again.

Not for a down under big purple anyway.