insideAI News is pleased to announce being a Media Partner for the upcoming AI Hardware & Edge AI Summit happening Sept. 9-12, 2024 in San Jose, Calif. Editor-in-Chief & Resident Data Scientist, Daniel D. Gutierrez will be attending in-person to keep a pulse on this advancing industry. He will be conducting interviews with some of the movers and shakers from the AI … [Read more...] about insideAI News – Media Partner for AI Hardware and Edge AI Summit 2024
Threat Actor Distributes Python-Based Info Stealer Using Fake Update
Summary On July 23, 2024, CrowdStrike Intelligence identified a malicious ZIP file containing a Python-based information stealer now tracked as Connecio. A threat actor distributed this file days after the July 19, 2024, single content update for CrowdStrike’s Falcon sensor — which impacted Windows operating systems — was identified and a fix was deployed. The ZIP file uses the … [Read more...] about Threat Actor Distributes Python-Based Info Stealer Using Fake Update
Falcon Content Update Preliminary Post Incident Report
Updated 2024-07-25 1900 UTC Executive Summary PDF This is CrowdStrike’s preliminary Post Incident Review (PIR). We will be detailing our full investigation in the forthcoming Root Cause Analysis that will be released publicly. Throughout this PIR, we have used generalized terminology to describe the Falcon platform for improved readability. Terminology in other documentation … [Read more...] about Falcon Content Update Preliminary Post Incident Report
Unlocking success: Insider tips from an Elastic Gold Contributor with Wagner Souza
Wagner Souza, an information security specialist focusing on vulnerability management, threat hunting, SIEM, ISO 27001 audit support, and LGPD compliance for six years, is an Elastic enthusiast and a Gold Contributor. He has presented multiple times at tech and security conferences and educational events. His hobbies include philosophy, literature, history, and religion. He … [Read more...] about Unlocking success: Insider tips from an Elastic Gold Contributor with Wagner Souza
Malware Distributed Using Falcon Sensor Update Phishing Lure
Summary On July 23, 2024, CrowdStrike Intelligence identified the phishing domain crowdstrike-office365[.]com, which impersonates CrowdStrike and delivers malicious ZIP and RAR files containing a Microsoft Installer (MSI) loader. The loader ultimately executes Lumma Stealer packed with CypherIt. The domain was registered on July 23, 2024, days after July 19, 2024, when an issue … [Read more...] about Malware Distributed Using Falcon Sensor Update Phishing Lure
Critical Flaw in Acronis Cyber Infrastructure Exploited in the Wild
Jul 29, 2024Ravie LakshmananEnterprise Security / Data Protection Cybersecurity company Acronis is warning that a now-patched critical security flaw impacting its Cyber Infrastructure (ACI) product has been exploited in the wild. The vulnerability, tracked as CVE-2023-45249 (CVSS score: 9.8), concerns a case of remote code execution that stems from the use of default … [Read more...] about Critical Flaw in Acronis Cyber Infrastructure Exploited in the Wild
Unlocking AI’s Potential: How to Build High-quality Data Foundations
“Garbage in, garbage out.” In the rapidly growing field of artificial intelligence (AI), this adage has never been more pertinent. As organisations explore AI to drive innovation, support business processes, and improve decision-making, the nature of the AI’s underlying technology and the quality of data feeding the algorithm dictates its effectiveness and reliability. This … [Read more...] about Unlocking AI’s Potential: How to Build High-quality Data Foundations
Tech Analysis: Channel File May Contain Null Bytes
Key Points CrowdStrike has observed instances internally and in the field in which the content of one or more channel files on disk is all zeroes. This has been observed in the context of a channel file being written to disk shortly before a machine crashes. The file containing zero content observed after a reboot is an artifact of the way in which the Windows operating system … [Read more...] about Tech Analysis: Channel File May Contain Null Bytes
Hacktivist Entity USDoD Claims to Have Leaked CrowdStrike’s Threat Actor List
The threat intel data noted in this report is available to tens of thousands of customers, partners and prospects – and hundreds of thousands of users. Adversaries exploit current events for attention and gain. We remain committed to sharing data with the community. On July 24, 2024, hacktivist entity USDoD claimed on English-language cybercrime forum BreachForums to have … [Read more...] about Hacktivist Entity USDoD Claims to Have Leaked CrowdStrike’s Threat Actor List
Malicious Inauthentic Falcon Crash Reporter Installer Distributed to German Entity
Summary On July 24, 2024, CrowdStrike Intelligence identified an unattributed spearphishing attempt delivering an inauthentic CrowdStrike Crash Reporter installer via a website impersonating a German entity. The website was registered with a sub-domain registrar. Website artifacts indicate the domain was likely created on July 20, 2024, one day after an issue present in a … [Read more...] about Malicious Inauthentic Falcon Crash Reporter Installer Distributed to German Entity