Fake CrowdStrike Installers Target German Users 1. CrowdStrike warns of a spear-phishing campaign using fake installers after the Falcon Sensor update crash. 2. A fake website distributing a malicious CrowdStrike Crash Reporter installer was created a day after the update issue. 3. Attackers used JavaScript disguised as JQuery to download and deobfuscate the installer, requiring a password for further action. 4. The installer, localized in German, targeted specific entities by prompting users to enter a "Backend-Server" password. 5. This campaign coincides with other phishing attacks spreading stealer and wiper malware like Lumma and Connecio.