Sidebar

Anyone Own CloudStrike Stock?

colbysullivan

colbysullivan

Hall of Fame
Dec 12, 2007
19,204
20,400
187
Gulf Breeze, FL
I work for an MSP and thankfully none of our clients use CrowdStrike, so today is just like any other day for me. However, my wife is a nurse, and her entire system is down. So many people are calling this a "Microsoft outage" which is disingenuous at best. CrowStrike sent out an update for the driver that runs their agent software and seemingly didn't test it. They showed they effectively had the power to bring the world to its knees because of incompetence. They need to be nuked from orbit.
 
  • Like
Reactions: Huckleberry
jthomas666

jthomas666

Hall of Fame
Aug 14, 2002
24,333
13,696
287
61
Birmingham & Warner Robins
You suppose they hired some QC people from Boeing?

Microsoft got involved because they had a system-wide Azure issue shortly before CloudStrike faceplanted. But yeah, this was just a ridiculous foul up. Help desks are swamped worldwide; I heard one estimate of 5 years FTE just to get machines back up and running. Having just got my laptop back up, that sounds about right.
 
crimsonaudio

crimsonaudio

Administrator
Staff member
Sep 9, 2002
68,349
83,538
462
crimsonaudio.net
I read that i's estimated that over a billion computers worldwide are essentially (temporarily) bricked due to this.

What a colossal failure.

And goodness, this seems like a critical infrastructure choke point. Might need to look at diversifying this sort of software.
 
  • Like
Reactions: Huckleberry
Jon

Jon

Hall of Fame
Feb 22, 2002
16,447
15,054
282
Atlanta 'Burbs
crimsonaudio said:
I read that i's estimated that over a billion computers worldwide are essentially (temporarily) bricked due to this.

What a colossal failure.

And goodness, this seems like a critical infrastructure choke point. Might need to look at diversifying this sort of software.
Click to expand...
it's endpoint protection software and this was essentially a definition update gone bad, definition updates are typically auto granted and not staggered as they are mostly non disruptive. Crowd strike has a lot to answer for
 
  • Like
Reactions: 92tide and crimsonaudio
crimsonaudio

crimsonaudio

Administrator
Staff member
Sep 9, 2002
68,349
83,538
462
crimsonaudio.net
Jon said:
it's endpoint protection software and this was essentially a definition update gone bad, definition updates are typically auto granted and not staggered as they are mostly non disruptive. Crowd strike has a lot to answer for
Click to expand...
Understood, and while I assume it would be near impossible to spoof it, it highlights a massive weak point in the infrastructure. A bad actor who either had access to one of these huge companies (or was somehow able to hijack their pushed updates) could cripple lots of industries worldwide.
 
jthomas666

jthomas666

Hall of Fame
Aug 14, 2002
24,333
13,696
287
61
Birmingham & Warner Robins
crimsonaudio said:
Understood, and while I assume it would be near impossible to spoof it, it highlights a massive weak point in the infrastructure. A bad actor who either had access to one of these huge companies (or was somehow able to hijack their pushed updates) could cripple lots of industries worldwide.
Click to expand...
It's happened. There are all manner of potential threats on the vendor side of things. I'm currently studying for my Security+ certification, and it's making me a little paranoid, to be honest.
 
Last edited:
  • Like
  • Thank You
Reactions: Jon and crimsonaudio
You must log in or register to reply here.

New Posts

Amazon Deals for TideFans!

YouTheFan Alabama Desk Pad

Purchases may result in a commission being paid to TideFans.

Latest threads

Top Bottom