CrowdStrike effectively bricked windows, Mac and Linux today.

Windows machines won’t boot, and Mac and Linux work is abandoned because all their users are on twitter making memes.

Incredible work.

    • Justin
      link
      fedilink
      English
      -54 months ago

      If someone hands a toddler a gun and they shoot someone, who’s fault is it?

      • @surewhynotlem
        link
        154 months ago

        The only thing that can stop a toddler with a gun is a good toddler with a gun

      • @rockSlayer
        link
        124 months ago

        What if that someone is another toddler that found the gun in the street, and it got in the street because it fell off a truck? Your Honor, what if the toddler had murderous intent because they were denied a sucker?

      • @jedibob5
        link
        English
        54 months ago

        Is this implying that a publicly-traded corporation whose software is installed on millions of computers around the world has the same level of agency and responsibility as a preschooler?

        I mean, yes, Microsoft bears responsibility for blindly accepting whatever deployment package CrowdStrike gave it and immediately yeeting it out to 100% of customers via Windows Update without any kind of validation or incremental rollout, and should probably be sued for it. That still doesn’t negate the complete and catastrophic failures at every step of the development process on the part of CrowdStrike. It takes a lot of people to fuck up this bad.

        • @KazuyaDarklight
          link
          English
          104 months ago

          Windows didn’t do anything, this was an update applied by the Crowdstrike agent.

          • peopleproblems
            link
            44 months ago

            That’s the impressive part of all this. Microsoft didn’t do it. CloudStrike did it.

            Microsoft left something in a state that allowed CloudStrike to fuck up enough to brick systems.

            It’s why we spend a lot of time reviewing security analysis of our own software - if there’s a way to fuck everything up, it better not because we enabled it to get fucked.

        • Justin
          link
          fedilink
          English
          64 months ago

          Is this implying that a publicly-traded corporation whose software is installed on millions of computers around the world has the same level of agency and responsibility as a preschooler?

          When it comes to IT reliability and security, kinda, yeah.

          Windows AV and MDM is a bit of a horror show in the corporate space. I worked somewhere where developers weren’t allowed to use WSL because it was blocked by McAfee. We also had 3 different MDMs running and they were slow as balls even though they were modern 8 core laptops.