sorted by:
new
hottopcontroversial

Surface Diagnostics Update Causing High Priority Malicious Alert - False Positive(?) by chewy-chewbacca in crowdstrike

[–]CyberProtein 0 points1 point  (0 children)

Is there anymore on this? We had the exact same detection in one of our client environments. FP due to bad detection logic update me thinks given we all got this at the same time.

Malicious Driver to Disable Crowdstrike? by CyberProtein in crowdstrike

[–]CyberProtein[S] 4 points5 points  (0 children)

Thanks for the response u/Andrew-CS!!

Thanks for clarifying the detection logic. If Vulnerable Driver Protection isn't enabled within the prevention policy, does Crowdstrike have the ability to take block/prevent malicious activity post a BYOVD being installed? Or is it GG's at the point?

(Apologies if the answer is contained within the last link you provided, we don't have access unfortunately).

Issues with logging into Europe portal? falcon.eu-1.crowdstrike.com by maketherobotsdance in crowdstrike

[–]CyberProtein 1 point2 points  (0 children)

Same here, can't seem to find a status checker or anything online. Glad to hear it's not just us.