• @RookiA
    link
    674 months ago

    Its called

    • themeatbridge
      link
      42
      edit-2
      4 months ago

      Falcon Sensor is one of the most popular security products in Windows servers. Practically every large company purchases Crowdstrike services to protect their servers.

      People who aren’t affected:

      • Linux and Mac servers
      • Private individuals and smaller businesess who have Windows machines that don’t buy CrowdStrike services.
      • Companies that bothered to create proper test environments for their production servers.

      People who are affected:

      Companies that use Windows machines, buy Falcon Sensor from Crowdstrike, and are too stupid/cheap to have proper update policies.

      In terms of numbers, we don’t know how many people are affected or how much it will cost. A lot. Globally. Flights were grounded, surgeries rescheduled, bank transfers and payments interrupted, and millions of employees couldn’t turn on their computers this morning.

      • TragicNotCute
        link
        English
        244 months ago

        proper test envs

        Nah, let’s direct ship anything any vendor sends us.

        • themeatbridge
          link
          214 months ago

          “We need to allocate our available budget to profit-generating processes. This just seems like a luxury we can’t afford.”

          -thousands of overpaid dipshits, yesterday.

      • Morphit
        link
        fedilink
        64 months ago

        Does anyone know how these Cloudstrike updates are actually deployed? Presumably the software has its own update mechanism to react to emergent threats without waiting for patch tuesday. Can users control the update policy for these ‘channel files’ themselves?

        • Morphit
          link
          fedilink
          24 months ago

          This doesn’t really answer my question but Crowdstrike do explain a bit here: https://www.crowdstrike.com/blog/technical-details-on-todays-outage/

          These channel files are configuration for the driver and are pushed several times a day. It seems the driver can take a page fault if certain conditions are met. A mistake in a config file triggered this condition and put a lot of machines into a BSOD bootloop.

          I think it makes sense that this was a preexisting bug in the driver which was triggered by an erroneous config. What I still don’t know is if these channel updates have a staged deployment (presumably driver updates do), and what fraction of machines that got the bad update actually had a BSOD.

          Anyway, they should rewrite it in Rust.

        • themeatbridge
          link
          14 months ago

          I don’t know for sure, but I would imagine that it varies based on the service level.

      • @garbagebagel
        link
        24 months ago

        Damn this morning I wished so hard my company was in the affected group. Alas, we all still had to work.

      • @[email protected]
        link
        fedilink
        44 months ago

        Is it saying each service had a few hundred complaints and then leveled out?

        One of them had 7k.

        But that isn’t only tracking this bsod thing right?

    • @Crackhappy
      link
      English
      104 months ago

      I have not yet seen any effects in my large multinational organization.

      • @[email protected]
        link
        fedilink
        9
        edit-2
        4 months ago

        I heard at Singapore international and a few Indian airports they had to write out all the tickets by hand.

        Sounds terrible for the employees.

        • @[email protected]
          link
          fedilink
          2
          edit-2
          4 months ago

          Yeah. It also affected banks, hospitals, retailers, distributors… someone definitely got fired. And it’s not even something that can be fixed remotely.

  • Destide
    link
    fedilink
    English
    18
    edit-2
    4 months ago

    The pro Linux German government members being validated. 🦎🐧

  • @werefreeatlast
    link
    14 months ago

    Cyanotypists love international blue screen day!

  • @FelixCress
    link
    -194 months ago

    Keep installing these compulsory updates which your overlords let you postpone but not to decline. Good sheep.

    • @MHanak
      link
      104 months ago

      “Stop installing updates to your security software and let it stagnate”

      • @FelixCress
        link
        -94 months ago

        Good sheep. Updates good, no updates bad.

        • @MHanak
          link
          54 months ago

          I wonder how many unpatched zero days anything you are running has

          • @FelixCress
            link
            14 months ago

            How many programmers does it take to screw in a light bulb? None, they already screwed up everything they could.

      • @FelixCress
        link
        -24 months ago

        Baaah, baaah, four legs good, two legs bad