ABOUT
WHAT OUR CLIENTS SAYEDUCATION CENTREBLOGCONTACT
MANAGED IT
MANAGED IT SUPPORT
SECURITY
HUNTRESS MANAGED EDRMICROSOFT 365 MDRCYBER ESSENTIALSCYBER AWARENESS TRAININGIRONSCALES EMAIL SECURITYSENTINELONEPROTECT MY 365DNS FILTERDARK WEB MONITORING
CLOUD
HOSTED DESKTOPMICROSOFT 365WAVE TELEPHONY3CX PHONE SYSTEM
BACKUP
DATA BACKUP & DRMICROSOFT 365 BACKUPXERO BACKUPSALESFORCE BACKUPGOOGLE WORKSPACE BACKUP
0161 850 2471
ABOUT
WHAT OUR CLIENTS SAYEDUCATION CENTREBLOGCONTACT
MANAGED IT
MANAGED IT SUPPORT
SECURITY
HUNTRESS MANAGED EDRMICROSOFT 365 MDRCYBER ESSENTIALSCYBER AWARENESS TRAININGIRONSCALES EMAIL SECURITYSENTINELONEPROTECT MY 365DNS FILTERDARK WEB MONITORING
CLOUD
HOSTED DESKTOPMICROSOFT 365WAVE TELEPHONY3CX PHONE SYSTEM
BACKUP
DATA BACKUP & DRMICROSOFT 365 BACKUPXERO BACKUPSALESFORCE BACKUPGOOGLE WORKSPACE BACKUP
0161 850 2471

Microsoft and CrowdStrike to Simplify Hacker Naming

Michael Tunstall

September 5, 2025

Imagine watching a thriller where the main villain is called four different names depending on who’s talking about them. Confusing, right?

That’s exactly the situation in cyber security today. The same hacking group can be referred to by completely different names depending on whether Microsoft, Google, CrowdStrike, or another firm is writing about them.

The result? Confusion that slows down how quickly businesses and security teams can respond to attacks.

To fix this, Microsoft and CrowdStrike have announced plans for a unified naming system. The goal is simple: give each hacking group one consistent identity that everyone recognises.

Instead of Salt Typhoon here, GhostEmperor there, and OPERATOR PANDA somewhere else, security firms will start using standardised names. The system uses weather-themed labels based on group type and origin — for example:

  • Typhoon = Chinese state-backed groups

  • Blizzard = Russian state-backed groups

  • Tempest, Storm, Tsunami = ransomware gangs, commercial spyware developers, and others

It may sound like a small change, but it’s a powerful one. Clear, consistent naming means quicker recognition of threats, better sharing of intelligence, and fewer missed warnings. For businesses, that translates to faster responses and stronger protection.

This also shows the value of collaboration between big players like Microsoft, CrowdStrike, and Google. By speaking the same language, they make it easier for everyone — including smaller businesses without in-house cyber experts — to stay informed and protected.

It’s the kind of behind-the-scenes improvement that won’t grab headlines, but it will help keep your business safer and cyber security less chaotic.

Need help strengthening your cyber security strategy? Get in touch today.

<All Posts