Less concerned about Crowdstrike since it’s not their product.
More concerned about Copilot:
Microsoft to host security summit after CrowdStrike disaster
Submitted 2 months ago by Xatolos@reddthat.com to technology@lemmy.world
Comments
jordanlund@lemmy.world 2 months ago
Womble@lemmy.world 2 months ago
That seems a bit of a non-story given that its prefaced on “once the attacker has access to your work email”. Yes once they have that they can do very good spear phishing attacks using copilot, but they could easily do them without copilot too.
n3cr0@lemmy.world 2 months ago
This 3rd party software company fucked up and M$oft get the pressure, so they act like they are responsible.
Even the customers fucked up by using a vital piece of software where they cannot test the updates before rollout.
bhamlin@lemmy.world 2 months ago
Right? I wish they’d respond like this when they themselves fuck up.
geekwithsoul@lemm.ee 2 months ago
A third party vendor whose entire business model is predicated on the fact that security is such an afterthought at Microsoft that enterprise customers need to resort to this kind of crap for a bare minimum of security.
IsThisAnAI@lemmy.world 2 months ago
🙄 because FOSS never has any serious cve and malicious code.
deegeese@sopuli.xyz 2 months ago
This is also MS’s fault because they never provided a proper API for security products like MacOS, so they end up having to run them all inside the kernel.
The reason for this omission was to give a competitive advantage to their own security products while also being cheaper.
corsicanguppy@lemmy.ca 2 months ago
This 3rd party software company fucked up
NO.
Clowntrike didn’t fuck up. They offered an externally-managed service that people allowed into their network because they didn’t really clue in how monumentally stupid this is. You’re blaming the gas station for blowing up your car or the leopards for eating your face. Customers who actually gave them money - the people who struggle with “that’s hot, so don’t touch it” - are a dime a dozen, and clowntrike was just taking advantage of the stupid. This has been the American way since snake oil salesmen during the gold rush.
We fucked up by not watching our stupider techbro friends better suited to a ward somewhere than a c-suite job. We should have been ridiculing them mercilessly so their shame would make them choose better.
WeirdGoesPro@lemmy.dbzer0.com 2 months ago
Your PC ran into a problem that Microsoft couldn’t handle.
emax_gomax@lemmy.world 2 months ago
Didn’t 5h3y just release an update that bricked dual boot installs. Something tells me someone else should be organising this. Someone that actually cares.
Defaced@lemmy.world 2 months ago
So are they going to reassess the capability of kernel level drivers like crowdstrike and anticheat solutions like vanguard? Because of they keep this capability open then they’re just asking for another fuck up.
billbasher@lemmy.world 2 months ago
They had better bring up that Secure Boot f up too
muntedcrocodile@lemm.ee 2 months ago
Do as I say, not as I do.
lud@lemm.ee 2 months ago
Microsoft didn’t cause the “disaster” though.
WeirdGoesPro@lemmy.dbzer0.com 2 months ago
They just made the poor decisions that made CrowdStrike required in the first place.
If they focused on selling an operating system instead of spyware, these things would happen less frequently.
deegeese@sopuli.xyz 2 months ago
Running security products in kernel mode is precisely what caused this disaster.
werefreeatlast@lemmy.world 2 months ago
Do not use windows or Microsoft solutions. That’s security rule #1.
For that to work, the hardware vendors should sell hardware that has opensource code that is easily corrected if there’s a security or other type of problem. For that to happen, Microsoft and other such companies need to stop monopolizing technologies. The government should make some changes to their parenting system. For example it should be illegal for companies to force their scientists and engineers to sell their parents automatically to the company. Instead only human people who can invent things should be the owners of the things they invent. If a company wants to keep a hold on that tech, keep the people who invented it happy. Let them own their tech so they can decide to sell it, trade it or make it free. Make it such that only people and not corporations can actually own the patents. Inquire and investigate companies that don’t follow the rules.
xavier666@lemm.ee 2 months ago
it should be illegal for companies to force their scientists and engineers to sell their parents automatically to the company
It’s already illegal
/jk
patents*
werefreeatlast@lemmy.world 2 months ago
Wait a minute! It should be illegal to sell their parents for sure! I’ve never sold my parents either!
mlg@lemmy.world 2 months ago
Reminds me of solarwinds doing security seminars after getting breached lol
RangerJosie@lemmy.world 2 months ago
Don’t they have an easily hacked screenshot collecting bit of Bloat/Spyware they’re desperately trying to get everyone to use?
Vince@lemmy.world 2 months ago
Sounds like something they should talk about in some kind of summit about security
corsicanguppy@lemmy.ca 2 months ago
ClownTrike: allows people to let leopards eat their face
Microsoft: “Fucking casual. Hold my zune, watch and learn”
I’m not worried: Outlook will cack halfway through sending the iCal invites, which are probably not even valid format anyway.
NeoNachtwaechter@lemmy.world 2 months ago
And next time facebook hosts a summit about data privacy.
/s
ImplyingImplications@lemmy.ca 2 months ago
Or the UN allowing Saudi Arabia to lead the Woman’s Rights forum
WhatAmLemmy@lemmy.world 2 months ago
The funny part is people believe the UN represents peace and freedom, instead of the financial interests of the wealthiest countries and oligarchs.
jaybone@lemmy.world 2 months ago
I don’t think you need the slash s there. It’s confusing.