Some bad code just broke a billion Windows machines

preview_player
Показать описание
Cybersecurity firm Crowdstrike pushed an update that caused millions of Windows computers to enter recovery mode, triggering the blue screen of death. Learn how the Crowdstrike crash happened and its impact around the world.

#programming #cybersecurity #thecodereport #crowdstrike #windows

💬 Chat with Me on Discord

🔗 Resources

🔥 Get More Content - Upgrade to PRO

Use code YT25 for 25% off PRO access

🎨 My Editor Settings

- Atom One Dark
- vscode-icons
- Fira Code Font

🔖 Topics Covered

- Crowdstrike failure explained
- How does windows kernel work
- What caused windows computers to crash?
- Cybersecurity fails
Рекомендации по теме
Комментарии
Автор

"You can't hack a system if the system doesn't work! "
- Cybersecurity intern pushing the update

realsemig
Автор

The fact that it was an Antivirus that performed the single most successful malware attacks ever is just pure poetry

tekalh
Автор

What the hell is their deployment process where they didn't catch this in testing? Like they ran the update, saw a blue screen of death and went "looks good, ship it"?

somethingsomething
Автор

If this kind of an upgrade can go through unchecked, imagine how easy it would be to pay one rogue engineer to deploy malicious code that can be exploited later at ease.

debasishraychawdhuri
Автор

My dad: Come on, it's just an internship, what's the worst that could happen?
Me:

nicolascage
Автор

Hiring 20 more project managers and 40 extra recruiters should prevent this in the future

strapatser
Автор

As an IT manager this really hurt.
Having to require a bitlocker key for 1000’s of laptops was a nightmare.

BeHappyWithUrLife
Автор

I also love the fact that Crowdstrike CEO, Kurtz, was McAfee CEO when something similar happened with Windows XP in 2010

vkmi
Автор

The alpha move of doing something that would make your stock value crash, but simultaneously freezing the stock market so that it can't.

ComDenox
Автор

They even named their cybersecurity company to sound like a DDoS attack.

clray
Автор

poor employee probably overworked af. one person should never be able to deal this much damage. this company has flawed processes

jaunitaquinlivan
Автор

It's insane to me how dependent we are on a single company.

mo-issa
Автор

I was fired last week from my IT job. Yesterday I woke up to a call from the company asking for help, as apparently they didn't have time to hire someone else capable of fixing it, I politely said that I was busy, hung up the call and laughed my ass off of them

manteiga_de_pimenta
Автор

this is why you don't push untested and uncontrolled updates to the world. Every single update has to be rigorously tested in-house and to a control group before an even larger test before pushing out the door.

garymartin
Автор

My boss and I had just had a conversation the day before about the risks associated with so many industries relying on "best practices" (French for "use what all the CEO's friends are using") for platform and enterprise software decisions.

SeaMonkey
Автор

They did so many things wrong. Push to prod on Friday, fired half their QA staff, no rolling updates, everyone who was supposed to check the commit was like "yep this looks good". Massive single point of failure of a company.

unalive_me
Автор

Everyone: DEV > TEST > PROD

Crowdstrike: PROD

AVSbeats
Автор

Started my new job at CrowdStrike today. Unplugged a socket marked "do not unplug" to charge my phone. A lot of commotion in the office soon after that. No idea what it was all about.

xFact-ory
Автор

I'm in Japan and was very confused on Friday when the lady at McDonald's was writing my order down on a piece of paper. This explains everything.

crazy
Автор

Another win for the "remind me later" to every update gang

jacobharmon