Early reports suggest that cyber security firm CrowdStrike may be to blame by pushing out a security update for its product that features a bug.
I hate Windows as much as the next Lemmy user but it takes 8 paragraphs before this gets clarified.
this post was submitted on 19 Jul 2024
181 points (95.5% liked)
News
22839 readers
3645 users here now
Welcome to the News community!
Rules:
1. Be civil
Attack the argument, not the person. No racism/sexism/bigotry. Good faith argumentation only. This includes accusing another user of being a bot or paid actor. Trolling is uncivil and is grounds for removal and/or a community ban.
2. All posts should contain a source (url) that is as reliable and unbiased as possible and must only contain one link.
Obvious right or left wing sources will be removed at the mods discretion. We have an actively updated blocklist, which you can see here: https://lemmy.world/post/2246130 if you feel like any website is missing, contact the mods. Supporting links can be added in comments or posted seperately but not to the post body.
3. No bots, spam or self-promotion.
Only approved bots, which follow the guidelines for bots set by the instance, are allowed.
4. Post titles should be the same as the article used as source.
Posts which titles don’t match the source won’t be removed, but the autoMod will notify you, and if your title misrepresents the original article, the post will be deleted. If the site changed their headline, the bot might still contact you, just ignore it, we won’t delete your post.
5. Only recent news is allowed.
Posts must be news from the most recent 30 days.
6. All posts must be news articles.
No opinion pieces, Listicles, editorials or celebrity gossip is allowed. All posts will be judged on a case-by-case basis.
7. No duplicate posts.
If a source you used was already posted by someone else, the autoMod will leave a message. Please remove your post if the autoMod is correct. If the post that matches your post is very old, we refer you to rule 5.
8. Misinformation is prohibited.
Misinformation / propaganda is strictly prohibited. Any comment or post containing or linking to misinformation will be removed. If you feel that your post has been removed in error, credible sources must be provided.
9. No link shorteners.
The auto mod will contact you if a link shortener is detected, please delete your post if they are right.
10. Don't copy entire article in your post body
For copyright reasons, you are not allowed to copy an entire article into your post body. This is an instance wide rule, that is strictly enforced in this community.
founded 1 year ago
MODERATORS
Article must be old too
Crowdstrike already rolled out an update, it's just everything that's already BSOD is going to take a while to be manually rolled back
An additional problem is bitlocked devices that can't get access to their own disc to fix the problem. And in some cases, the key servers are even down as well. It's a huge mess.
Definitely not what you want to hear as an IT worker on a Friday.
At least it being Friday will be a blessing in some cases since it means for some sectors that IT will have the weekend to fix it during non-business hours.
Long weekend ahead, that’s for sure
Here’s to hoping they’re hourly and not salaried!
"just"...
The article rn is all over the place alternating between saying the fix will take a long time to come and saying the fix already has been deployed, lol
Not all that confusing. The fix is deployed so it won’t affect any more machines. The ones already affected will take a while to restore.
CrowdStrike
Ah yes. Very familiar with their software. From time to a time an update or version would wreak havoc on your Kubernetes cluster or at the very least degrade performance.
IT threw it on our laptops and on occasion I’d have to kill the process.
Hey Bob! Is that a 🐛 bug?
Nah Bob, it's a feature! Windows is full of features!
The irony of this whole situation is astounding.
Tries to prevent bad actors sabotaging corporate computer systems; is bad actor sabotaging corporate computer systems.
Which is why there’s gotta be a better way to monitor and secure than installing 3rd party root level software on systems.
It's so bad out there right now, that this is the "correct" way. The issue comes when that software isn't treated like the root level suite it is by its vendor.
Yeah I always liked how for Linux kernel stuff to have wide adoption, it had to actually be merged into the kernel because you couldn't really convince people that recompiling a kernel with some proprietary patches is a good idea.
SELinux was the NSA's project, but they still treated it carefully with how it was developed and released it with GPL so that it could be tested and looked at by many people.
Meanwhile windows has no concerns with anti cheat basically running their own rootkits.
There is a great analogy to gun ownership in here.
How?
An estimated 37 percent of gunshot injuries in the U.S. are the result of accidental shootings. https://www.thetrace.org/2022/12/accidental-shootings-cdc-data-children/
Thing that is supposed to protect people from bad circumstance causes bad circumstance.
"I never thought guns would blow off my face!"
That's a much better analogy than I was expecting. Well said.
Crowdstrike, it's the hip new ransomware.
You cannot hack a server that's down. Security first!
Venture capitalists:
*MBAs
This is probably the safest windows servers have even been
Crowd Strike really living up to its name
"chaos"