In the aftermath of the recent CrowdStrike cybersecurity crash that resulted from a flawed software update, scammers wasted no time in exploiting the situation. The widespread disruptions caused by the crash created an opportunity for criminals to prey on affected customers seeking solutions for rescheduling flights, accessing banking services, or fixing technology issues.
Identifying Scammers’ Tactics
With CrowdStrike serving as the cybersecurity provider for approximately 70% of Fortune 100 companies, the impact of the crash was felt across various sectors, leading to grounded planes, business interruptions, 911 system failures, and delayed financial transactions. Scammers have seized upon the chaos to execute fraudulent schemes, such as phishing attacks, as highlighted by the U.S. Cybersecurity and Infrastructure Security Agency. The National Cyber Security Center in the UK also warned of an uptick in phishing attempts related to the CrowdStrike outage.
- Scammers may attempt to deceive individuals by offering fake products like non-existent plane tickets or may seek personal information for future financial exploitation.
Targeted Industries
Given the disruptions in air travel caused by the CrowdStrike crash, the travel industry has become a prime target for scammers. Anton Dahbura, the Executive Director of the Information Security Institute at Johns Hopkins University, emphasized that frustrated customers trying to reschedule flights have been particularly vulnerable to fraudulent schemes.
