CrowdStrike Identifies Phishing Scam Targeting Job Seekers
/ 1 min read
💻🕵️♂️ CrowdStrike warns of phishing scam exploiting its branding. Cybersecurity firm CrowdStrike has identified a phishing campaign that uses its name to distribute a cryptocurrency miner disguised as a CRM application for a fake recruitment process. The attack begins with a phishing email claiming the recipient has been shortlisted for a junior developer role, directing them to download a malicious application. Once executed, the application evades detection and downloads the XMRig miner in the background. Additionally, a separate threat involves a counterfeit proof-of-concept for a Microsoft security flaw, which lures security researchers into downloading an information stealer. These incidents highlight the ongoing risks associated with phishing and malware tactics in the cybersecurity landscape.
