Phishing scam warning: “We’ll help you recover your cloud” by impersonating MS

The risk of malware distribution and phishing is increasing due to Microsoft (MS) cloud service failure. There are concerns that crimes such as impersonating MS or cybersecurity firm CrowdStrike employees to create fake websites and steal personal information may become rampant.

According to the Associated Press and other sources on the 20th (local time), CrowdStrike CEO George Kurtz warned of a new phishing scam attempt, saying, “We are seeing people impersonating company employees and others, approaching us and offering to help restore our services.” He said in a statement, “Malicious actors may attempt to exploit this incident,” and “We encourage everyone to remain vigilant and communicate with official CrowdStrike representatives.”

The incident occurred when CrowdStrike’s software update conflicted with Microsoft’s Windows operating system.

Cybersecurity firm SecureWorks said it had discovered several CrowdStrike-related website domains created in the hours following the incident. “These could be designed to look like legitimate websites, potentially tricking IT administrators or users into downloading malware or providing personal information,” SecureWorks warned.

Governments around the world have also warned people to be aware of criminals exploiting the situation. The Australian Signals Directorate (ASD), an Australian cyber intelligence agency, said, “Malicious websites and unofficial codes claiming to help media, retailers, banks and airlines recover from the widespread digital service outage last Friday have been appearing online.” “Users are strongly advised to obtain technical information and updates only from official CrowdStrike sources.” The previous day, the UK’s National Cyber ​​Security Centre (NCSC) also urged people to “be on the lookout for suspicious emails or phone calls claiming to be from Microsoft or CrowdStrike.”

The IT industry is also paying attention to what kind of compensation customers who suffered damages due to the MS incident will receive. There is also the possibility that airlines will collectively demand compensation. This is because consumers suffered from flight delays and cancellations due to this crisis, and airlines also suffered financial losses. An airline industry insider said, “Consumers and airlines have travel insurance, so we will have to wait and see how the insurance companies handle this situation,” and “After confirming who will be held responsible and what the IT companies’ compensation regulations are, the victims will decide what kind of compensation they will demand.”

Reporter Nam Hye-jeong [email protected]