Twitter, the DOJ, DarkSeoul, Fake Employees, PlugX, Stargazer Ghost, Aaran Leyland… – SWN #401

Doug White

1. US offers $10M for tips on DPRK hacker linked to Maui ransomware attacks
2. KnowBe4 Hires Fake North Korean IT Worker, Catches New Employee Planting Malware
3. French police push PlugX malware self-destruct payload to clean PCs
4. CrowdStrike CEO says 97% of Windows systems back online
5. Tech firms top list of most targeted industry in Q2 by cybercriminals
6. Crooks used 3K GitHub accounts to distribute malware
7. Analysis
8. How to Stop Elon Musk From Training His AI On Your Data

Aaran Leyland

1. How a cheap barcode scanner helped fix CrowdStrike’d Windows PCs in a flash

   Shortly after Australian branch of accounting and advisory firm Grant Thornton experienced a series of Blue Screens of Death (BSOD) on their Windows PCs and servers last Friday, senior systems engineer Rob Woltz recalled a critical detail: PCs treat barcode scanners the same as keyboards upon booting up.

   The insight gained significance when the company had to deal with the chaos caused by CrowdStrike, which sent numerous PCs and at least 100 servers at Grant Thornton Australia into a problematic cycle due to CrowdStrike's flawed testing software.

   Grant Thornton encrypted all their devices using Microsoft's BitLocker, necessitating a multi-step resolution from CrowdStrike and a 48-character key for rebooting.