40
all 10 comments
sorted by: hot top controversial new old
[-] kylian0087@lemmy.dbzer0.com 19 points 3 months ago

Wouldn't any internal testing have cought this issue at CrowdStrike?

[-] Telorand@reddthat.com 16 points 3 months ago

A smoke test, aka turn it on and "see if it catches fire," would have caught this.

[-] sugar_in_your_tea@sh.itjust.works 14 points 3 months ago

And a controlled rollout would've limited the damage.

[-] Brkdncr@lemmy.world 10 points 3 months ago

Yes. Why would anyone trust Crowdstike after this? They’ve ignored foundational deployment steps.

[-] boydster@sh.itjust.works 13 points 3 months ago

But will you try actually installing the update on a machine or 50 to see if you bork things horrifically?

Crowdstrike: "We are really focused on unit testing right now"

I probably misread it, don't mind my grumbling, rabble rabble rabble

[-] kid@sh.itjust.works 5 points 3 months ago
[-] sugar_in_your_tea@sh.itjust.works 6 points 3 months ago

Local developer testing

Hmm, didn't think of that one...

staggered deployment strategy

Also a novel idea...

It's like they're catching up to best practices from 10 years ago, good job team!

[-] mosiacmango@lemm.ee 3 points 3 months ago

Listening to literally any sysadmin would have had these practices already in play.

I wonder if any are in the building, of if it's all devs and "platform engineers."

[-] PlutoniumAcid@lemmy.world 1 points 3 months ago

Systems in scope include Windows hosts running sensor version 7.11 and above that were online between Friday, July 19, 2024 04:09 UTC and Friday, July 19, 2024 05:27 UTC and received the update.

Definitely incorrect. My machine was powered off by physical switch at that time. It was powered off at 17:00 the day before and powered up at 08:00 CEST / 06:00 UTC and promptly bluescreened.

this post was submitted on 24 Jul 2024
40 points (95.5% liked)

Cybersecurity

5612 readers
100 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !cybersecurity@lemmy.capebreton.social !securitynews@infosec.pub !netsec@links.hackliberty.org !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 1 year ago
MODERATORS