Home / Companies / Crowdstrike / Blog / Post Details
Content Deep Dive

Response When Minutes Matter: RDP — Remote Desktop Pwnage, Part 2

Blog post from Crowdstrike

Post Details
Company
Date Published
Author
CrowdStrike
Word Count
2,254
Company Posts That Month
Language
English
Hacker News Points
-
Post removed?
No
Summary

CrowdStrike's Falcon Complete team effectively demonstrates their robust incident response capabilities by swiftly detecting, investigating, and remediating a Remote Desktop Protocol (RDP) intrusion. This case study showcases their ability to remove threat actors and restore compromised systems without disrupting business operations, leveraging a combination of automation and collaboration with clients. The team's methodology involves identifying compromised hosts, removing malicious binaries and persistence mechanisms, and applying automated bulk remediation using a customizable Real Time Response (RTR) API script. The incident began with the detection of a malicious XMRig coinminer binary, leading to the identification and remediation of over 40 impacted hosts, emphasizing the importance of full deployment of Falcon agents for optimal protection. This rapid response highlights CrowdStrike's commitment to stopping breaches and enhancing cybersecurity readiness for their clients.

Trends Found in this Post
Trend Post Mentions Total Month Mentions Posts Companies MoM
AI Agents 2 2,394 1,321 1 -
Real-time 2 1,659 640 46 +203%
Zero Trust 1 1,843 1,331 3 +61333%
Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.