…according to a Twitter post by the Chief Informational Security Officer of Grand Canyon Education.

So, does anyone else find it odd that the file that caused everything CrowdStrike to freak out, C-00000291-
00000000-00000032.sys was 42KB of blank/null values, while the replacement file C-00000291-00000000-
00000.033.sys was 35KB and looked like a normal, if not obfuscated sys/.conf file?

Also, apparently CrowdStrike had at least 5 hours to work on the problem between the time it was discovered and the time it was fixed.

  • qprimed
    link
    fedilink
    English
    arrow-up
    82
    arrow-down
    2
    ·
    5 months ago

    security as a service is about to cost the world a pretty penny.

    • Telorand@reddthat.com
      link
      fedilink
      English
      arrow-up
      89
      arrow-down
      2
      ·
      5 months ago

      You mean it’s going to cost corporations a pretty penny. Which means they’ll pass those “costs of operation” on to the rest of us. Fuck.

      • qprimed
        link
        fedilink
        English
        arrow-up
        31
        ·
        edit-2
        5 months ago

        well, the world does include the rest of us.

        and its not just opeerational costs. what happens when an outage lasts 3+ days and affects all communication and travel? thats another massive shock to the system.

        they come faster and faster.

      • zbyte64@awful.systems
        link
        fedilink
        English
        arrow-up
        7
        ·
        5 months ago

        You did not just fall out of a coconut tree. You exist in a context of all that came before you.

    • littlewonder@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      5 months ago

      All the more reason for companies to ignore security until they’re affected personally. The companies I’ve worked for barely ever invested in future cost-savings.