Outage 7/19
- 
 The conspiracy theorists are calling this a Big Brother breach- the outage is a hack to push us to the NEW WORLD ORDER- Thought it was funny - What do we actually know about this outage? I haven't looked at anything about it yet Happy Friday 
- 
 @WrCombs Some janky Crowdstrike thing BSOD'ed a shit-tonne of windows machines, from what I read. 
- 
 @RojoLoco said in Outage 7/19: @WrCombs Some janky Crowdstrike thing BSOD'ed a shit-tonne of windows machines, from what I read. That's wonderful - so def not foreign hackers? lol 
- 
 Crowdstrikeyour computer has been found to be non-compliant and will be blocked,…” 
- 
 @gjacobse said in Outage 7/19: Crowdstrikeyour computer has been found to be non-compliant and will be blocked,…” Y2k in 2024, 24 years after it's finally happened. 
- 
 This is something a single test would have caught prior to releasing the update... You'd think more would be implementing automated testing... apparently, some do no testing whatsoever. 
- 
 @Obsolesce said in Outage 7/19: This is something a single test would have caught prior to releasing the update... You'd think more would be implementing automated testing... apparently, some do no testing whatsoever. Testing is overrated apparently - lol 
- 
 Candidate for new word to add to the dictionary - Crowdstruck. 
- 
  
- 
 @WrCombs It's really super minor. Companies with a clue about security and basic system design aren't really impacted. It requires running Windows on mission critical systems AND not trusting Microsoft AND choosing ClowdStrike as your MS security replacement (which CS seems fine on its own but it's a problematic category of products to start with) to end up in a "no sane IT department should arrive at this decision" point. By definition, those impacted, didn't see these systems as truly critical. 
- 
 @Obsolesce testing AV updates is uncommon. Compared to other kinds of things. Outside of Wall St. I've never known any shop anywhere to both use third party AV and do testing of it. 
- 
 @WrCombs said in Outage 7/19: @Obsolesce said in Outage 7/19: This is something a single test would have caught prior to releasing the update... You'd think more would be implementing automated testing... apparently, some do no testing whatsoever. Testing is overrated apparently - lol Imagine how hard that would be to do in a place using third party AV. It might not even be provided as an option. 
- 
 @scottalanmiller Imagine that was an unassigned character that brought the whole system to a stand still. Just Saying on the other side i did get free coffee and pastry on Starbucks that day. 
- 
 @scottalanmiller said in Outage 7/19: @Obsolesce testing AV updates is uncommon. Compared to other kinds of things. Outside of Wall St. I've never known any shop anywhere to both use third party AV and do testing of it. I meant CrowdStrike testing their own updates prior to releasing / pushing them to the public. Simple automated testing, for example as part of a CI/CD pipeline, could have caught this, if no other testing. They really skipped some things on their end prior to pushing it out. I don't know of many software companies that do not implement a basic functionality test prior to release. This is a 100% failure rate on Windows devices as far as I understand... something any test would have caught. If they had tested this on at leaat a single Windows device... 
- 
 As one of my co-workers quipped "They're not getting any malware now!" 







