CrowdStrike RCA, AMD Hack, FREE Microsoft Cyber Training, plus more!

Author

InfoSec Sam
August 11, 2024

This week's newsletter

Recent News

CrowdStrike BSOD RCA

CrowdStrike has released a detailed root cause analysis of the Falcon sensor crash that caused Blue Screen of Death (BSOD) errors on on over 8 million systems.

The analysis explains how the issue stemmed from a conflict between the Falcon sensor and specific software configurations. If you want the full details of the incident you can read the Root Cause Analysis report using the link below:

CrowdStrike Root Cause Analysis

Falcon sensor crash RCA

www.crowdstrike.com/wp-content/uploads/2024/08/Channel-File-291-Incident-Root-Cause-Analysis-08.06.2024.pdf

Crowdstrike aren’t shying away from their recent mishap, the company’s president Michael Sentonas took the stage at the Pwnie Awards to accept the award for Most Epic Fail!

AMDisappointed

Chip giant AMD is investigating claims of a data breach after a hacker offered to sell stolen data from the company. The data offered for sale allegedly includes information on future AMD products, customer and employee databases, datasheets, source code, property files, firmware, and financial documents. That a whole lot of data to lose!

The hacker posted on a dark web forum, claiming to possess sensitive information. AMD is currently assessing the validity of these claims and allude to the fact that if the claims are true the data likely came from a third party. Time will tell if theses claims are indeed true!

MFA Must!

Organisations are being urged to implement Multi-Factor Authentication (MFA) to comply with GDPR requirements. Failure to do so may result in significant penalties, as MFA is increasingly viewed as a necessary security measure to protect sensitive data.

Regulators are emphasising the role of MFA in safeguarding personal information and ensuring compliance with data protection laws. MFA is a powerful control that is easy to implement so there are no excuses!

Other News

  • Speedrun Savior - Hacker dwangoAC hunts video game speedrunning cheaters and debunks fake speedrunning records.

  • Cisc(oh) no - CISA warns of threat actors targeting improperly configured Cisco devices impacting Over 6,000 IPs with the Cisco SMI feature exposed to the internet!

  • Trump Tapping - Donald Trump's campaign claims its emails were hacked by Iranian threat actors. Iran have denied any involvement!

Career Development

FREE Microsoft Cybersecurity Training

If you’re early in your cybersecurity career this training course by Microsoft will teach you the basics in an easy to understand way.

This training path consists of 6 modules with a duration of just over 2 hours covering:

  • Describe basic cybersecurity threats, attacks, and mitigations

  • Describe concepts of cryptography

  • Describe authentication and authorisation in cybersecurity

  • Describe network-based threats and mitigations

  • Describe device-based threats and security controls

  • Describe application-based threats and how to protect against them

Link to the training can be found below, as well as other free resources shared on my TikTok channel:

Subscribe to keep reading

This content is free, but you must be subscribed to InfoSecSam's Newsletter to continue reading.

I consent to receive newsletters via email. Terms of use and Privacy policy.

Already a subscriber?Sign in.Not now