I wanna meme too
#Crowdstrike #bootloops #frootloops #followthenose #zeroday
Calling it “Clownstrike” is quite unfair to actual clowns, who are doing an honest job, aren’t harming anyone, and to the best of my knowledge aren’t currently engaged in a labor dispute
ONGOING WAVES OF SMUGNESS FROM LINUX AND APPLE USERS "COULD LAST DAYS", EXPERTS WARN. #crowdstrike
Christopher Moltisanti predicted today
So managers are starting to spew the whole "well I didn't do anything wrong, it affected everyone else, so we're not liable" bullshit.
Did you allow a third party vendor to have the highest privilege access to all of your systems AND let them run Remote Code Execution on your systems whenever they want?
You didn't have a test environment set up to test each update or patch that is applied to your systems before you push them to prod? No? Just let it auto-update?
Yeah, that "Risk Transference" didn't work so well as your GRC policy seemed to think it would, huh? I know they're a security company and they SHOULD have tested it, but they didn't, did they?
I know everyone else does it, but if everyone else jumped off a bridge, would you?
Just because everyone else fucked up, doesn't mean you didn't fuck up.
There's gonna be a lot of deep discussions in this post-mortem and hopefully orgs will change. Those that don't will just be hit again... and again... and again.
Major global cyber outage currently taking place right now. Cybersecurity platform crowdstrike is “down” worldwide, causing global it problems, Microsoft crashes, 911 outages across several us states, and disruptions in international airlines, banks and media outlets.
Prominent security consultant Troy Hunt says ‘this will be the largest it outage in history’ and ‘this is basically what we were all worried about with y2k, except it’s actually happened this time!’
- Biggest tech outage ever according to experts
- Major banks, media, airports and airlines affected by major it outage
- Rail services disrupted in parts of USA and UK
- Payment systems impacted in different parts of the world, including australia and the uk
- Australia’s government calls for emergency meeting
- Significant disruption to some Microsoft services
- 911 services disrupted in several US states including Alaska, Arizona, Indiana, Minnesota, New Hampshire and Ohio
- services at London stock exchange disrupted
- Sky News went off air for 3+ hours, other media facing disruptions
- Crowdstrike CEO says not due to cyberattack and that ‘the issue has been identified, isolated and a fix has been deployed
Source: https://www.instagram.com/p/C9mpI6iKmvq/?igsh=Z2dtaTEzbnNncTE3
In an unexpected turn of events, a sensible take on #Crowdstrike from the Orange Site.
Oh no!!!
I've found the areas of social media where they're saying "Crowdstrike is the same company that investigated the DNC hack! This is all the deep state! This is the beginning of a government take over to keep Joe Biden in office!!!!"
This demonstrates a thing that I’m sure serious security pros (and their adversaries) have long known: These Windows security products are a highly attractive attack surface for serious professional Bad Guys. They run in God mode and are typically purchased by IT-management types via the “enterprise software sales” process. (Think: golf.)
I wonder how many of them are already deeply compromised? I am certain that the number is not zero.
#Crowdstrike #Windows #infosec
Crowdstrike ad aged like milk.
Sorry.
#CrowdStrike
Years ago, I used to run a fun little tumblr.
Today was the day that made me dig out the old password.
https://www.tumblr.com/windowsisbroken/756443095198056448/lol
Tip: If your IT dept says that under no circumstances should you reboot your computer, you can take the entire day off by rebooting your computer.
Hey fellow #Linux users, despite the #CrowdStrike problem only affecting #Windows, this is not a windows problem.
This is an "automatic update that got forced onto everyone with insufficient testing while also having way too many permissions" problem.
If you think big corps wouldn't run something similar on Linux, I have a an NFT of a bridge to sell you.
and this is why we need to stop absolving *commercial* cybersecurity vendors of software quality concerns.
there should be multiple checks preventing this type of broken content in an update.
how did they allow it to ship to so many machines all at once?
that event is gonna cost them at least 5 interns
Everyone on site is now Desktop Support.
Too funny: In 2010 McAffe caused a global IT meltdown due to a faulty update. CTO at this time was George Kurtz. Now he is CEO of #crowdstrike
https://www.zdnet.com/article/defective-mcafee-update-causes-worldwide-meltdown-of-xp-pcs/
Godspeed to every able bodied man, woman, and enby running around manually fixing each and every Windows computer running #CrowdStrike.
Entire IT Security team watching Desktop Support fix the #CrowdStrike problem.