- Tech support scams have emerged following the global system disruption.
- The scams will further damage CrowdStrike’s already tarnished reputation.
OUR TAKE
Phishing emails and phone calls attempting to steal user information will further damage CrowdStrike’s already tarnished reputation. Despite warnings, some individuals may still fall for these scams. Although CrowdStrike is prepared to spend billions to restore its reputation and provide compensation, the outcome remains uncertain and is mostly not optimistic.
— Yasmine Luo, BTW reporter
What happened?
Following a faulty software update from CrowdStrike that caused global computer system disruptions, there has been a surge in tech support scams. Scammers are posing as CrowdStrike representatives through fake websites, phishing emails, and phone calls to steal sensitive information.
CrowdStrike advises users to only communicate through official channels and has provided a list of impersonating websites to prevent scams.
“CrowdStrike Intelligence recommends that organisations ensure they are communicating with CrowdStrike representatives through official channels and adhere to the technical guidance provided by CrowdStrike support teams,” the company stated.
The company identified at least 30 domain names that are impersonators, including “crowdstrikebluescreen.com,” “crowdstrike-helpdesk.com,” and “crowdstrikefix.com.” CrowdStrike noted that while some of these domains may not currently serve malicious content, they could be used for future social engineering attacks.
Also read: Chaotic scenes as global IT outage hits airports, banks and media
Also read: How ‘vulnerability assessments’ can beat the hackers
Why it’s important
The recent CrowdStrike cybersecurity incident caused major disruptions in travel and banking. Scammers exploited the chaos with phishing attempts targeting customers rescheduling flights and fake social media accounts posing as airline support to steal personal data.
This incident will undoubtedly further fuel the controversy surrounding CrowdStrike, whose reputation has already been damaged by public complaints due to service disruptions. Despite issuing warnings, it is foreseeable that some individuals, driven by urgency, may still fall into these traps.
To restore its reputation and compensate for the losses caused by the system issues, CrowdStrike is expected to spend billions of dollars. However, whether this will achieve the desired outcome and yield satisfactory results remains uncertain, and overall, the outlook is not optimistic.
To avoid scams, users should be cautious of requests for unnecessary personal information, poor grammar, and suspicious message origins, as verified companies typically ask for less sensitive data. Experts advise avoiding quick-fix solutions and waiting for verified business responses to prevent falling for scams.
