On 19 July, many airports and offices experienced an IT outage. Later, it was revealed that the source of the problem was an update for Falcon, a cybersecurity platform by Crowdstrike that affected systems running on Microsoft.
Some affected parties have restored their systems, while others are still trying to get them back up.
The National Cyber Coordination and Command Centre (NC4) of the National Cyber Security Agency (NACSA) clarified in a statement that this disruption is not a cyber attack or a security incident.
However, this outage can lead to “significant cyber risk to the affected organisation” and a “high risk that threat actors are exploiting the issue by conducting phishing and social engineering attacks.”
Elaborating more on the scenario, they said:
“They will pose as CrowdStrike Customer Support, offering unsolicited assistance in resolving the issue.”
“These attacks aim to deceive current CrowdStrike clients and the public into disclosing sensitive information, distributing malicious files or clicking on potentially dangerous links,” they continued.
The Cyber Security Agency of Singapore has also issued a similar statement warning their people about these phishing campaigns.
Those affected by the outage are advised to only refer to official Crowdstrike channels and block out malicious domains detailed on NACSA and SingCert.
Stay tuned for more updates!
Also read: KTMB Affected by ‘Crowdstrike’ Issue, Ticketing System & All Customer Service Channels are Down