this post was submitted on 19 Jul 2024
830 points (98.5% liked)

Technology

59534 readers
3196 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

…according to a Twitter post by the Chief Informational Security Officer of Grand Canyon Education.

So, does anyone else find it odd that the file that caused everything CrowdStrike to freak out, C-00000291-
00000000-00000032.sys was 42KB of blank/null values, while the replacement file C-00000291-00000000-
00000.033.sys was 35KB and looked like a normal, if not obfuscated sys/.conf file?

Also, apparently CrowdStrike had at least 5 hours to work on the problem between the time it was discovered and the time it was fixed.

you are viewing a single comment's thread
view the rest of the comments
[–] some_guy@lemmy.sdf.org 109 points 4 months ago (6 children)

If it had been all ones this could have been avoided.

[–] jj4211@lemmy.world 57 points 4 months ago (5 children)

Just needed to add 42k of ones to balance the data. Everyone knows that, like tires, you need to balance your data.

[–] rmuk@feddit.uk 9 points 4 months ago (1 children)

I mean, joking aside, isn't that how parity calculations used to work? "Got more uppy bits than downy bits - that's a paddlin'" or something.

[–] echodot@feddit.uk 7 points 4 months ago* (last edited 4 months ago)

Assuming they were all calculations, which they won't have been.

We will probably never know for sure, because the company will never actually release a postmortem, but I suspect that the file was essentially just treated as unreadable, and didn't actually do anything. The problem will have been that important bits of code, that should have been in there, now no longer existed.

You would have thought they'd do some testing before releasing an update wouldn't you. I'm sure their software developers have a bright future at Boeing ahead of them. Although in fairness to them, this will almost certainly have been a management decision.

load more comments (3 replies)
load more comments (3 replies)