The OFFICIAL tech stuff thread

A Former User

It’s pretty staggering in retrospect that all these big companies with all this critical infrastructure just lets some third party yahoos push (self-evidentally) untested code directly to their devices without so much as testing the impact themselves first.

There’s stories over on Hacker News about Crowdstrike being responsible for the same thing in March of this year of except that time was Debian servers affected, only brought down a handful of obscure services, so didn’t it get any press.

madrebel

luckily for crowdstrike, with all the outages, its harder to short their stock … 9d chess.

Stu

@tigger said in The OFFICIAL tech stuff thread:

Maybe don’t use Microsoft for critical infrastructure? The world has gone crazy.

Jurassic Park used Unix. And everyone died.

It's a Unix system

madrebel

@Stu said in The OFFICIAL tech stuff thread:

Jurassic Park used Unix. And everyone died.

Let’s also not forget how much work Microsoft has done with Linux over the past decade. If i’m not mistaken they’re in the top 5 commiters to the Linux kernel. I may be recalling the article wrong but under Balmer’s leadership, Microsoft was trying to kill Linux. Under Nadella though, they shifted to adoption and cooperation.

A decision that has been good for everyone fwiw.

Gators1

Kilemall

A bit bitter about that Christmas meltdown beating I see.

But I do love the Texan no fucks given when it comes out.

Tazz

Victor Tangermann  /  Jul 19, 2024  /  Future Society

Microsoft Recommends Rebooting Your Computer 15 Times as Blue Screen of Death Strikes Worldwide

As the world is still reeling from a massive IT outage triggered by an antivirus update, Microsoft recommends rebooting up to 15 times.

A Former User

Reboot 15 times? That’s like, what, 3 windows updates? No problem.

(I just booted up windows for the first time in months tonight and got a truckload of updates. Fuck that shit is primitive.)

Lob12

Tazz

@Lob12 that big PC better not overheat

A Former User

Cybersecurity strategist and former FBI counterintelligence official Eric O’Neill:

“If the U.S. government needs to bail out CrowdStrike, which I believe is too big to fail, then taxpayers will bear the burden”

I really hope this guy is a paid CrowdStrike lobbyist because then he’d just be an asshole. Otherwise, if some incompetent maker of a Norton Antivirus equivalent is considered “too big to fail”, the corporate kleptocracy has cemented itself in your countries DNA and you’re fucked.

Source

Kilemall

@Hog said in The OFFICIAL tech stuff thread:

Cybersecurity strategist and former FBI counterintelligence official Eric O’Neill:

“If the U.S. government needs to bail out CrowdStrike, which I believe is too big to fail, then taxpayers will bear the burden”

I really hope this guy is a paid CrowdStrike lobbyist because then he’d just be an asshole. Otherwise, if some incompetent maker of a Norton Antivirus equivalent is considered “too big to fail”, the corporate kleptocracy has cemented itself in your countries DNA and you’re fucked.

Source

If you recall the novel Snow Crash, it posited the US of the future was good at two things-pizza and software and the government did software. So maybe that’s what happens with private corps not up to the liability.

Pakoon

@Hog said in The OFFICIAL tech stuff thread:

Cybersecurity strategist and former FBI counterintelligence official Eric O’Neill:

“If the U.S. government needs to bail out CrowdStrike, which I believe is too big to fail, then taxpayers will bear the burden”

I really hope this guy is a paid CrowdStrike lobbyist because then he’d just be an asshole. Otherwise, if some incompetent maker of a Norton Antivirus equivalent is considered “too big to fail”, the corporate kleptocracy has cemented itself in your countries DNA and you’re fucked.

Source

As a CRWD shareholder, I’m glad that this was just a technical glitch and didn’t happen because of a cyberattack lol

A Former User

@Pakoon said in The OFFICIAL tech stuff thread:

@Hog said in The OFFICIAL tech stuff thread:

Cybersecurity strategist and former FBI counterintelligence official Eric O’Neill:

“If the U.S. government needs to bail out CrowdStrike, which I believe is too big to fail, then taxpayers will bear the burden”

I really hope this guy is a paid CrowdStrike lobbyist because then he’d just be an asshole. Otherwise, if some incompetent maker of a Norton Antivirus equivalent is considered “too big to fail”, the corporate kleptocracy has cemented itself in your countries DNA and you’re fucked.

Source

As a CRWD shareholder, I’m glad that this was just a technical glitch and didn’t happen because of a cyberattack lol

Well that’s kind of funny too. I was reading numbers that Microsoft put out of how many machines were knocked out and it was it was orders an order of magnitude greater than the worst malware caused outage so far.

https://www.bbc.com/news/articles/cpe3zgznwjno

Pakoon

Musk is an idiot

Kilemall

@Hog said in The OFFICIAL tech stuff thread:

@Pakoon said in The OFFICIAL tech stuff thread:

@Hog said in The OFFICIAL tech stuff thread:

Cybersecurity strategist and former FBI counterintelligence official Eric O’Neill:

“If the U.S. government needs to bail out CrowdStrike, which I believe is too big to fail, then taxpayers will bear the burden”

I really hope this guy is a paid CrowdStrike lobbyist because then he’d just be an asshole. Otherwise, if some incompetent maker of a Norton Antivirus equivalent is considered “too big to fail”, the corporate kleptocracy has cemented itself in your countries DNA and you’re fucked.

Source

As a CRWD shareholder, I’m glad that this was just a technical glitch and didn’t happen because of a cyberattack lol

Well that’s kind of funny too. I was reading numbers that Microsoft put out of how many machines were knocked out and it was it was orders an order of magnitude greater than the worst malware caused outage so far.

https://www.bbc.com/news/articles/cpe3zgznwjno

I say at work that the security department is our greatest threat. No joke, one initiative is going to absolutely kill us from now on, it’s going to be a bunch of mother may I requests to gain access and bad policy deployment shutting us down.

Gators1

@Kilemall said in The OFFICIAL tech stuff thread:

@Hog said in The OFFICIAL tech stuff thread:

@Pakoon said in The OFFICIAL tech stuff thread:

@Hog said in The OFFICIAL tech stuff thread:

Cybersecurity strategist and former FBI counterintelligence official Eric O’Neill:

“If the U.S. government needs to bail out CrowdStrike, which I believe is too big to fail, then taxpayers will bear the burden”

I really hope this guy is a paid CrowdStrike lobbyist because then he’d just be an asshole. Otherwise, if some incompetent maker of a Norton Antivirus equivalent is considered “too big to fail”, the corporate kleptocracy has cemented itself in your countries DNA and you’re fucked.

Source

As a CRWD shareholder, I’m glad that this was just a technical glitch and didn’t happen because of a cyberattack lol

Well that’s kind of funny too. I was reading numbers that Microsoft put out of how many machines were knocked out and it was it was orders an order of magnitude greater than the worst malware caused outage so far.

https://www.bbc.com/news/articles/cpe3zgznwjno

I say at work that the security department is our greatest threat. No joke, one initiative is going to absolutely kill us from now on, it’s going to be a bunch of mother may I requests to gain access and bad policy deployment shutting us down.

We are in a threat environment though where security teams absolutely need to be more proactive. It seems like there are weekly breaches anymore and probably far more than we ever know about. They have to not only worry about mistakes by employees but also security holes in the software they purchase. They annoy the shit out of me too, but I have also seen details of some of the attack attempts on our company and it’s pretty scary.

Kilemall

@Gators1 said in The OFFICIAL tech stuff thread:

@Kilemall said in The OFFICIAL tech stuff thread:

@Hog said in The OFFICIAL tech stuff thread:

@Pakoon said in The OFFICIAL tech stuff thread:

@Hog said in The OFFICIAL tech stuff thread:

Cybersecurity strategist and former FBI counterintelligence official Eric O’Neill:

“If the U.S. government needs to bail out CrowdStrike, which I believe is too big to fail, then taxpayers will bear the burden”

I really hope this guy is a paid CrowdStrike lobbyist because then he’d just be an asshole. Otherwise, if some incompetent maker of a Norton Antivirus equivalent is considered “too big to fail”, the corporate kleptocracy has cemented itself in your countries DNA and you’re fucked.

Source

As a CRWD shareholder, I’m glad that this was just a technical glitch and didn’t happen because of a cyberattack lol

Well that’s kind of funny too. I was reading numbers that Microsoft put out of how many machines were knocked out and it was it was orders an order of magnitude greater than the worst malware caused outage so far.

https://www.bbc.com/news/articles/cpe3zgznwjno

I say at work that the security department is our greatest threat. No joke, one initiative is going to absolutely kill us from now on, it’s going to be a bunch of mother may I requests to gain access and bad policy deployment shutting us down.

We are in a threat environment though where security teams absolutely need to be more proactive. It seems like there are weekly breaches anymore and probably far more than we ever know about. They have to not only worry about mistakes by employees but also security holes in the software they purchase. They annoy the shit out of me too, but I have also seen details of some of the attack attempts on our company and it’s pretty scary.

Ya I put up with it, and due to one event we did get literally the hacking world come at us years ago, it would have been far worse today. And the stupid Change Healthcare thing is still affecting us, I’m literally implementing something next week cause vendor morons.

But the internal guard threat is going to get us too and I’m on pins and needles every time they put up a change for review.

Gators1

@Kilemall yeah, there is definitely a balance to be had there. Unfortunately a lot depends on how rational the security head is because the rest of management will tend to defer toward their judgement unless they go completely overboard and it affects the business. We have a pretty good relationship with security where I work as it’s not overbearing or requiring a lot of extra work, but they also limit what we are able to do and we have to work around quite a bit.

A Former User

Every time my contract renews (ie every three months) I lose access to systems I need to do my job. It takes up to a week to sort it out. Every time they refresh the non-production systems from the production system - same loss of access and time to restore. We add a ridiculous number of objects to the same security profiles to avoid the 6 to 8 week lead time it takes to get the security to create a new one. My Zscaler PRA session locks every ten minutes regardless of whether I’m still working on my desktop and won’t let me copy / paste my 128 bit password in from KeepassXC so it incentivizes the shortest and crappiest passwords you can get by with. Some policy change they made for Teams on Android recently would have required me to install some extra Microsoft security thing that ceded control of my personal phone to the company and I thought, well that’s easy, I’ll just uninstall Teams. No more pinging me out of hours when the SHTF, you’ll have to wait until Monday when I log in to the desktop client.

I could go on and on but IT where I work is a dumpster fire in general. In fact I’d have to estimate that since I started I’ve either been locked out of the tools I need or they are broken for > 5% of the time I’ve worked there. One recent issue meant I couldn’t work for nearly two weeks and I had AMS, BT and Cognizant bounce me around between the three companies while IT middle management were begging someone to fix it so I could support the business.

It was shocking to me when I started at that place but everyone is like that’s the way it is.