…according to a Twitter post by the Chief Informational Security Officer of Grand Canyon Education.

So, does anyone else find it odd that the file that caused everything CrowdStrike to freak out, C-00000291-
00000000-00000032.sys was 42KB of blank/null values, while the replacement file C-00000291-00000000-
00000.033.sys was 35KB and looked like a normal, if not obfuscated sys/.conf file?

Also, apparently CrowdStrike had at least 5 hours to work on the problem between the time it was discovered and the time it was fixed.

  • qprimed@lemmy.ml
    link
    fedilink
    English
    arrow-up
    83
    arrow-down
    3
    ·
    4 months ago

    security as a service is about to cost the world a pretty penny.

    • Telorand@reddthat.com
      link
      fedilink
      English
      arrow-up
      90
      arrow-down
      3
      ·
      4 months ago

      You mean it’s going to cost corporations a pretty penny. Which means they’ll pass those “costs of operation” on to the rest of us. Fuck.

      • qprimed@lemmy.ml
        link
        fedilink
        English
        arrow-up
        32
        ·
        edit-2
        4 months ago

        well, the world does include the rest of us.

        and its not just opeerational costs. what happens when an outage lasts 3+ days and affects all communication and travel? thats another massive shock to the system.

        they come faster and faster.

      • zbyte64@awful.systems
        link
        fedilink
        English
        arrow-up
        7
        ·
        4 months ago

        You did not just fall out of a coconut tree. You exist in a context of all that came before you.

    • littlewonder@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      4 months ago

      All the more reason for companies to ignore security until they’re affected personally. The companies I’ve worked for barely ever invested in future cost-savings.