- cross-posted to:
- technology@lemmy.world
- cross-posted to:
- technology@lemmy.world
You must log in or register to comment.
Can someone in non marketing terms explain what the fuck CrowdStrike Falcon Sensor is? I literally never heard of this company or product before.
It checks for malicious falcons in your system’s level 4 aviary cache.
Ha ha! Well done!
It’s software put on every machine so that the company can quickly isolate it if/when something bad happens (or it falls out of security compliance). To do this is requires a constant Internet connection, insanely high privileges on the machine and frequent updates to be appraised of risks.
That risk update went off the rails and into the next state.
It’s basically corporate anti-virus software. Intended to detect and prevent malware.
Is it less expensive than ransomware though?
By a wide margin
Yes
Crowstrike Onstrike
So cool
This is why you do staged rollouts of updates… not the entire planet at once.
And don’t have automatic updates enabled for critical infrastructure.
No, you run Linux with automatic secutity updates turned on
Can somebody explain why the down votes?
Mostly because it’s simply not that easy. Devs go where support is at and follow market share (2000s era Mac gamer memes.)
If you look at the Linux community as a whole it’s a wasteland of competing parties and standards. So it’s not developing for linux it’s developing for distros^hardware.
Windows is shit and it’s pretty well known that it’s getting worse… but it’s still the standard and unfortunately until Linux starts unifying and becoming more stable for developers it’s unlikely to become more compelling for the broader market to switch to.
TLDR; every time a new conflict breaks out hop in that thread and say “give peace a chance” and see how well that gets received.
Windows is actually steadily improving from a security point of view. MS is finally starting to deprecate ancient garbage like NTLM, UWP apps are sandboxed and there’s even talk of rewriting core libraries in Rust to make them memory safe.
Are we talking linux deskop for usage at end points?
Seems odd, we CAN run servers on it but end points can’t be done properly.
I don’t know shit about shit but linux desktop was a pleasant surprise as a gamer.
That comment you answered to is full of shit, desktop Linux works fine for many companies. And no dev ever chooses Windows lol
Steams been a massive contributor to that.
It’s a demonstration that if we focus on a common goal that Linux development can actually be pushed forwards. So this is definitely an improvement for end users - and I expect it will improve in the future… But broadly speaking there are too many requirements for some level of troubleshooting knowledge.
Because “just run Linux lol” is unrealistic and naive, it gets said on every thread, and it gets incredibly tiring.
i guess running Windows PC is realistic and smart lol
When I have a very large, very expensive piece of manufacturing equipment whose control software only runs on Windows, yes, it is.
specific use case requires specific set up…
So true, this really highlights the risk of updates impacting critical systems vs critical systems being exposed to critical vulnerabilities. Its a real balancing act.
That’s a shame.
This is going to turn out it was a hack in several months right?
Never attribute to maliciousness that which can be explained by incompetence.
That said, I’m sure the Crowdstrike CEO is currently on a phone call with three of their pet Congresscritters asking if they can get a $100M grant to harden their systems against Russia/China/NKorea/Antifa interference right now.
While being simultaneously gang…handled by the unnamed 3-letter agencies representatives
If I ever become a super 1337 hacker I’m going to setup all of my exploits to look like it could be regular mismanagement, thanks for the advice
“Senator, we were hacked by gay furries.”
Hacks of this grade tend to be targeted, this is most likely incompetence.
Think big. This may have had a target. But hitting the target only wasn’t possible so everyone got hit.
It’s possible those responsible only had this weapon that was capable of hitting the target, maybe the plan was to disrupt world flights to make someone late tomorrow, who knows. Maybe poo-tin or Xi-the-Pooh wanted to hit America and its allies?
A state actor will use more precise techniques to attack specific targets. Think SolarWinds and Stuxnet.
Ransomware doesn’t apply here and tends to depend on phishing first anyway.
Even terrorists have specific targets in mind.
So it’s either Bond villains or incompetence.
Edit: The only way i can fit your comment would be an incompetent script kiddy. Even then, doesn’t make sense as all systems were not directly attacked, as would be the case, but rather through what would have to be a side-channel attack, so no.
A lot of companies will get calls from the “provider” offering help with mitigation so that additional features can also be installed. This is a time to be extra weary.
Won’t take that long, security researchers are already decompiling the update to see if it was malicious or incompetence.
You won’t find the incompetence in the software no matter what.
If you fail to assume that the software contains issues – if you fail to understand that your software is made by humans and humans make mistakes, not because they’re bad but because they’re human – and if you fail to implement mechanisms to feel gracefully with inevitable failures, THAT is the incompetence.
Failures are systemic.
No idea why this relatively banal truth is getting so many downvotes
One funny thing about humans is that they aren’t just gloriously fallible: they also get quite upset when that’s pointed out. :)
Unfortunately, that’s also how you end up with blameful company cultures that actively make reliability worse, because then your humans make just the same amounts of mistakes, but they hide them – and you never get a chance to evolve your systems with the safeguards that would have prevented these.
Oh yes I make those failures myself, testing and staging and limited release schedules save my human failures from breaking the world
Systemic failures are incompetence.
This is going to be Solarwinds all over again I can just smell it.
Yeah… applicable on soo many levels.
Source: xkcd - “Dependency” - https://xkcd.com/2347/
I’ll just quietly leave this here: https://www.crowdstrike.com/blog/crowdstrike-google-cloud-expand-strategic-partnership/
Yikes. I feel sorry for all the help desk and support staff that has to deal with this chaotic mess all day.
Yup, my phone is nonstop going off with slack messages and tickets. Time to mute it for now
On a Friday !
They’ll need that beer.
What kind of criminally incompetent psychopath rolls out a global update on a fucking Friday afternoon?
Is the CEO of CrowdStrike Satan?
They push updates every day. Attackers don’t take Fridays off.
I have heard that Friday afternoon can be better because it gives you a full weekend to put out any fires before business hours start again.
That’s assuming it’s a small error that doesn’t roll on into the week anyway.
What a striking name… CrowdStrike heh. They definitely live up to it!
More like CrashStrike
Looking forward to the Kevin Fang video in a few years.
Crowd Strike’s Final Fantasy
Ca-caw!
