Skip to main content

Search

Items tagged with: CrowdStrike

I used "crowdstrike" as a verb at work today, to paraphrase: "CI is broken because github crowdstruck us with a bad rust compiler update". AKA: usable any time an automatic update from a vendor breaks your infrastructure.

All I'm saying is, if they didn't want this neologism, they shouldn't have ruined my flight home from Italy.

#crowdstrike

#crowdstrike

Uh, probably none hazarding a guess as it's Apple Park. As a matter of fact, I've just been listening to Dave Plummer talking about how the #Crowdstrike outage was caused. And it was a very very interesting listen even to me who is technical, but not that technical. He explained it in the technical way, then how it would make sense.
#crowdstrike

How many machines at Apple Park were affected by #Crowdstrike do you think? Haha
#crowdstrike

I agree with everything Scott Hanselman writes in this post.

linkedin.com/feed/update/urn:l…

#crowdstrike #microsoft #dei #softwaredevelopment

Context - someone on the birdside are blaming #crowdstrike on DEl hiring Here's the thing folks. I've been coding 32 years. When something like this happens it's an organizational failure. Yes, some human wrote a bad line. Someone can "git blame" and point to a human and it's awful. But it's the testing, the CI/CD, the A/B testing, the metered rollouts, an oh shit button to roll it back, the code coverage, the static analysis tools, the code reviews, the organizational health, and on and on. It's always one line of code but it's NEVER one person. Implying inclusion policies caused a bug is simplistic, reductive, and racist.
Engineering is a team sport. Inclusion makes for good teams. Good engineering practices makes for good software. Engineering practices failed to find a bug multiple times, regardless of the seniority of the human who checked that code in. Solving the larger system thinking SDLC matters more than the null pointer check. This isn't a "git gud C++ is hard" issue and it damn well isn't an DEl one. 口参O 12,698 417

Scott Hanselman on LinkedIn: #crowdstrike | 452 comments

Context - someone on the birdside are blaming #crowdstrike on DEI hiring Here’s the thing folks. I’ve been coding 32 years. When something like this happens… | 452 comments on LinkedIn
Scott Hanselman (www.linkedin.com)
#microsoft #softwaredevelopment #DEI #crowdstrike

I thought being a programmer was a waste of effort, a thankless job that would never make a difference.

Then #CrowdStrike showed me that with a single line of code, I can make the world a better place.

#lifegoals

#lifegoals #crowdstrike

AAARRRGGGHHHHHHHHHH!!!!!!!!

Channel 4 News, in talking about today's #Microsoft #CrowdStrike fuckup, stated that the expected Y2K effect was imaginary.

No! No! NO!

We* did a massive amount of work to update and ensure systems would keep on working. And more importantly WE TESTED EVERYTHING FULLY BEFORE GOING LIVE.

(* As in everyone responsable for operating computer systems around the world!)

#microsoft #crowdstrike

This demonstrates a thing that I’m sure serious security pros (and their adversaries) have long known: These Windows security products are a highly attractive attack surface for serious professional Bad Guys. They run in God mode and are typically purchased by IT-management types via the “enterprise software sales” process. (Think: golf.)

I wonder how many of them are already deeply compromised? I am certain that the number is not zero.
#Crowdstrike #Windows #infosec

#infosec #Windows #crowdstrike

While not exactly the same, remember that what is happening with #CrowdStrike could also easily happen with kernel level #anticheat software. Giving proprietary software vendors permission to insert whatever they please into your kernel, especially with the ability to auto update it, means giving up all control of your system to that software vendor. One day CrowdStrike, the next Riot Vanguard. Don't let this garbage into your system! A game is not worth losing your system or your data over.
#crowdstrike #anticheat

In an unexpected turn of events, a sensible take on #Crowdstrike from the Orange Site.

Source: news.ycombinator.com/item?id=4…

Screenshot of a Hacker News comment. Text follows: So CrowdStrike is deployed as third party software into the critical path of mission critical systems and then left to update itself. It's easy to blame CrowdStrike but that seems too easy on both the orgs that do this but also the upstream forces that compel them to do it. My org which does mission critical healthcare just deployed ZScaler on every computer which is now in the critical path of every computer starting up and then in the critical path of every network connection the computer makes. The risk of ZScaler being a central point of failure is not considered. But - the risk of failing the compliance checkbox it satisfies is paramount. All over the place I'm seeing checkbox compliance being prioritised above actual real risks from how the compliance is implemented. Orgs are doing this because they are more scared of failing an audit than they are of the consequences failure of the underlying systems the audits are supposed to be protecting. So we need to hold regulatory bodies accountable as well - when they frame regulation such that organisations are cornered into this they get to be part of the culpability here too.

So CrowdStrike is deployed as third party software into the critical path of mis... | Hacker News

news.ycombinator.com
#crowdstrike

#CrowdStrikepocalypse #crowdstrike
Today was not a security or cyber incident. Our customers remain fully protected
#crowdstrike #crowdstrikepocalypse

Hey fellow #Linux users, despite the #CrowdStrike problem only affecting #Windows, this is not a windows problem.

This is an "automatic update that got forced onto everyone with insufficient testing while also having way too many permissions" problem.

If you think big corps wouldn't run something similar on Linux, I have a an NFT of a bridge to sell you.

#linux #Windows #crowdstrike

A #crowdstrike update can travel halfway around the world while an APT is putting on its shoes
#crowdstrike

Make no mistake, if an outage similar to Crowdstrike would have been caused by OpenSource, there would be calls across the entire industry and at the government level to ban OpenSource from critical systems. But since it was caused by billion-dollar publicly-traded companies, nothing to see here, move-on.

#CrowdStrike #Linux #OpenSource #Outage #Microsoft

#linux #opensource #microsoft #crowdstrike #outage

Too funny: In 2010 McAffe caused a global IT meltdown due to a faulty update. CTO at this time was George Kurtz. Now he is CEO of #crowdstrike

zdnet.com/article/defective-mc…


Defective McAfee update causes worldwide meltdown of XP PCs

Oops, they did it again. Early this morning, McAfee released an update to its antivirus definitions for corporate customers that mistakenly deleted a crucial Windows XP file, sending systems into a reboot loop and requiring tedious manual repairs.
Ed Bott (ZDNET)
#crowdstrike

Crowd Strike thing is basically an "Ever Given stuck in Suez Canal" of IT industry.

All the techies losing hair, sleep, and family time trying to get this un-stuck are the excavator operators trying to get things un-fucked.

#CrowdStrike #InfoSec

#infosec #crowdstrike

Maximizing shareholder value by using tried-and-true industry-standard systems and services is going just great.

Let's see if "nobody ever got fired for choosing Windows" still holds a week from now. :blobcatpopcornnom:

#InfoSec #CrowdStrike

#infosec #crowdstrike

Maybe rather than trying to shove AI and ads in every portion of Windows Microsoft should focus on not letting their cybersecurity partners take down computers and networks all over the world.

#fail #crowdstrike #microsoft

A bank of flight info displays at Denver Airport all blue screened by the failed Crowdstrike update.
A display to honor military veterans who work at Denver Airport all blue screened by the failed Crowdstrike update.
#microsoft #fail #crowdstrike

This #CrowdStrike thing is as close as Fedi gets to the World Cup
#crowdstrike

PSA: Some of y'all are getting confused by this...

The #Crowdstrike outage is affecting local (bare metal and VM) Windows servers and user machines running Crowdstrike globally.

All of the issues around the world right now aren't because O365/azure was down earlier yesterday. That was an unrelated issue with their cloud services; the Crowdstrike issue isn't an MS cloud service outage.

#crowdstrike

Oh, Fatima. I bet you wish you'd stayed in ballet now, don't you.
#CrowdStrike
A UK Government advertisement from a few years ago. It has a picture of a young woman in a tutu with ballet shoes, and the text saying "Fatima's next job could be in cyber (she just doesn't know it yet)"
#crowdstrike

Today's #Crowdstrike disaster is a strong reminder that a broken computer is a safe computer
#crowdstrike

The thing I hope is alarming people about today's #CrowdStrike outage is that if the company can take out that much of America's tech infrastructure by accident with a single buggy update, our adversaries can do the same on purpose with a supply-chain attack against CrowdStrike, and that one probably wouldn't be as quick to recover from. #infosec
#infosec #crowdstrike

Sensitive content

#microsoft #crowdstrike @Nacho

No self scan in Albert Heijn today. Is this related to #CrowdStrike?
A screenshot of Albert Heijn app not able to connect to the self scan server of the store.
#crowdstrike

so uhh... is booting in safe mode on #windows #accessible with a #screenReader yet? :) #crowdstrike
Fortunately not bit by this but it did make me curious
#accessible #Windows #screenreader #crowdstrike

BBC is doing extraordinary coverage of the #outtage

The ticker is followed by special live reporting worldwide bbc.com/news/live/cnk4jdwp49et…

#Crowdstrike #Azure


IT outage live updates: Planes grounded as mass worldwide issue hits airlines, media and banks

The cause of the outage is unclear, but American Airlines tells the BBC its flights are not taking off due to an issue with Crowdstrike cybersecurity software.
BBC News
#azure #crowdstrike #outtage