this post was submitted on 19 Jul 2024
357 points (97.1% liked)

Microblog Memes

6019 readers
3519 users here now

A place to share screenshots of Microblog posts, whether from Mastodon, tumblr, ~~Twitter~~ X, KBin, Threads or elsewhere.

Created as an evolution of White People Twitter and other tweet-capture subreddits.

Rules:

  1. Please put at least one word relevant to the post in the post title.
  2. Be nice.
  3. No advertising, brand promotion or guerilla marketing.
  4. Posters are encouraged to link to the toot or tweet etc in the description of posts.

Related communities:

founded 1 year ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 23 points 5 months ago* (last edited 5 months ago) (3 children)

The real fuck up is that Crowdstrike Falcon can auto update through its own updater, and doesn't have any kind of control panel for management that could be used for change control. If their customers could have tested this update first, none of this would be happening.

[–] pennomi 17 points 5 months ago (2 children)

Or if they were smart enough to do a phased rollout to a small percentage of users before deploying worldwide. That catches most issues quickly.

[–] [email protected] 5 points 5 months ago (1 children)

Or if Microsoft reviewed drivers before signing them.

[–] KmlSlmk64 4 points 5 months ago

I think they do (or at least I've seen it mentioned), but this wa apparently caused a by a bad configuration fil for that driver. (A 40-something kB file pf pure zeroes)

[–] [email protected] 4 points 5 months ago

or like, tested the fucking update at all...

[–] quinkin 4 points 5 months ago

Yep. A lot of customers were running n-1 or even n-2 of their falcon sensor release to mitigate risk. Doesn't count for shit though if the "deployed content" bypasses all of that.

[–] [email protected] 2 points 5 months ago* (last edited 5 months ago)

an antivirus-like software is something you want auto updates for in my opinion