imagine if the crowsstrike bug was malicious...
imagine if the crowsstrike bug was malicious...
Management: Well we lost 8 billion dollars but we still don't have any extra money for backups or remote reimaging or vdi, but we will buy you 700 plane tickets to go to each computer and boot it into safe mode, also you're fired
99Management: Our consultants don’t know what ebpf or what immutable filesystems are so obviously your wizard magic is not better than crowdstrike. Also IT will be in charge of that one component and clickops it bypassing the entire CICD pipeline and sanity checking system you have. It’s for compliance which is our word for shut up or we fire you.
31clickops
I think I will steal this.
10
while management at CrowdStrike: we are doubling the number of min commits and reviews per day to make up for the damage
2Much less invest in a memory safe language. If they don't take a serious look at Rust, Go, or some other memory-safe language... I'll stop right there: they won't. Management doesn't give a fuck as long as the cost is within manageable margins, or they can fire a bunch of scapegoats but change nothing.
-4
I’m willing to bet the threat of evil admin attacks will keep people up for a while.
37If they made it malicious, we probably wouldn’t have noticed though
30Plus this event doesn't rule out the existence of a malicious aspect.
8Nobody ever learned from the solarwinds attack. If a massive amount of your infrastructure is backed by some obscure software, bad actors will either try to insert a backdoor or find a zero-day exploit. If people are going to neglect what just happened, crowdstrike will fall heals up, faster than solarwinds did.
4
Wall Street bets regards linked to an evil admin attack? 😕
6Some guy posted a short thesis for crowdstrike just hours before the thing happened
11