Crypto Con: CrowdStrike Phishing Scam Mines for Laughs and Digital Dollars

CrowdStrike warns of a phishing scam using its branding to disguise a cryptocurrency miner as a fake recruitment CRM tool. Victims are lured with job offers, only to have the XMRig miner secretly installed. Remember, if it sounds too good to be true, it’s probably a cryptominer in disguise!

3P
Published: January 10, 2025 10:24 amAdded: January 10, 2025 at 2:48 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Looks like the phishers have gotten a bit too “cryptic” with their job offers! Job seekers, beware of any recruiter asking you to mine for job prospects… literally. CrowdStrike’s fake recruitment ploy is not the kind of career you want to dig into!

Key Points:

  • Phishing campaign mimics CrowdStrike branding to deliver a cryptominer.
  • Victims are tricked into downloading a fake CRM application during a phony recruitment process.
  • Malware conducts checks to evade detection before deploying the XMRig cryptominer.
  • Trend Micro warns of a fake PoC for LDAPNightmare targeting security researchers.
  • Both attacks illustrate sophisticated social engineering tactics exploiting current trends.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?