CrowdStrike Fires Employee Allegedly Leaked Sensitive Information To Hackers Group

CrowdStrike fired suspicious employees (photo: dock. CrowdStricte)

JAKARTA CrowdStrice, a cybersecurity company, revealed that they had fired 'suspicious insiders' in October 2025. This is because these employees leaked sensitive information.

This dismissal incident was first revealed after Scattered Lapsus$ Hunters shared screenshots on Telegram. Images shared show that the group managed to enter CrowdStrice's internal system.

The screenshot shows a dashboard containing links to the company's resources. This includes the Okta dashboard belonging to the user used by employees to access various internal applications.

The hackers claim that they managed to break into CrowdStricte through Gainsight, a customer relations management company. They claimed to use stolen information from Gainsight to gain access to CrowdStricte.

However, CrowdStrice denied the claims. They stated that insider access was stopped after they found an employee who 'sistributted an external image of his computer screen'.

"Our system has never been hacked and customers remain protected," said CrowdStrice spokesman Kevin Benacci, as reported by TechCrunch on Monday, November 24. CrowdStrice has now submitted the case to the relevant law enforcement agency.

Scattered Lapsus$ Hunters are a known hacker collective of several groups, including ShinyHunters and Lapsus$. Both often use social engineering techniques to trick employees into allowing access to internal systems.

In October 2025, the group claimed to have stolen more than 1 billion data from large companies that rely on Salesforce to store customer data. The companies affected were Allianz Life, Qantas, TransUnion, and others.