CERT-In: These users became the target of phishing attackers due to global outage, government agency warned

The country's cyber security agency has said that a campaign of phishing attacks has started against users affected by the global computer outage. Cyber ​​attackers are offering help to people in the guise of CrowdStrike support staff like a system recovery tool. CERT-In has said in an advisory on Saturday that these attackers can get users to install an unknown malware different from what is expected. Due to this, sensitive data can be leaked, as well as the system can crash.

The whole world was facing a big computer problem through the global outage on July 19. An incorrect update of CrowdStrike is believed to be behind this. In this, Microsoft Windows operating systems crashed badly under the leadership of Falcon sensor software. Due to this, there was a huge impact on the ground level all over the world including India. This included flights, business, banking, and hospitals etc.

The systems of both CrowdStrike and Microsoft have now been fully recovered. Both CrowdStrike and Microsoft have officially fixed the problem from their side. However, recovery work is still going on in some big technical organizations. CERT-In has said in its advisory that according to many reports, CrowdStrike users are being targeted through phishing attack campaigns. The global technical outage is being taken full advantage of behind this, during which many suspicious activities are being carried out.

The agency said that attackers are also sending phishing emails to customers by posing as CrowdStrike support staff through phone calls. Attackers are making a mess in the name of an automated software recovery. CERT-In said that phishing attackers are distributing Trojan malware. For this, attackers are asking users to install unknown malware on their devices using recovery tools. This is leading to data leaks, system crashes, and data loss.

Phishing attack scams are used to track official names, identities, email text messages, and phone calls so that sensitive personal information of people can be stolen. Along with this, the aim is to steal people's banking, credit card login, and other information.

CERT-In works under the central government to prevent cyber attacks. This agency works to thwart online scams phishing attacks and hacking attempts. The agency has said in its advisory that URLs with 31 types of connections should be blocked. This includes 'crowdstrikeoutage[.]info' and 'www.crowdstrike0day[.]com' URLs.

The agency has said in its advisory that users will have to take special care of cyber hygiene to avoid cyber attacks. Also, software patches should be updated only through the official website. Also, avoid clicking on links with ".exe". Also, be cautious of any suspicious phone numbers. Scammers use email and text services with masks instead of real phone numbers to hide their identity.

The agency has also said in its suggestion that users should click only on those URLs whose website domain allows safe browsing. Along with this, you can take the help of many filtering tools for additional security. Along with this, definitely look for the green lock in the browser link, if it is not there then the website will not be safe. In such a situation, avoid giving any kind of sensitive information.