Home / Companies / Crowdstrike / Blog / Post Details
Content Deep Dive

IR Team Investigations Uncover eCrime Use of Nation-State Attack Methods

Blog post from Crowdstrike

Post Details
Company
Date Published
Author
-
Word Count
1,940
Company Posts That Month
Language
English
Hacker News Points
-
Post removed?
No
Summary

CrowdStrike Services' 2017 Cyber Intrusion Casebook details the blurring lines between nation-state-sponsored attacks and eCrime, highlighting an increase in fileless attacks and "living off the land" techniques, which involve exploiting native Windows processes and erasing traces to extend undetected presence within systems. A notable case involved the SamSam ransomware, associated with the xDedic darknet forum, where adversaries used brute-force attacks via compromised RDP logins, demonstrating sophisticated threat actor tactics. CrowdStrike's investigation identified the ransomware's persistence mechanisms, halted its spread, and provided tailored security recommendations, such as enforcing Network Level Authentication for RDP and implementing two-factor authentication, to fortify the client's defenses against future cyber threats.

Trends Found in this Post
Trend Post Mentions Total Month Mentions Posts Companies MoM
AI Agents 2 2,394 1,321 1 -
Real-time 1 1,659 640 46 +203%
Zero Trust 1 1,843 1,331 3 +61333%
Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.