#1  
Old 07-19-2024, 09:59 PM
Sock Puppet's Avatar
Sock Puppet Sock Puppet is offline
Take back the weird
 
Join Date: Oct 2005
Location: so far out, I'm too far in
Gender: Bender
Posts: XMVDCCCLXXXII
Blog Entries: 7
Images: 120
Default Clownstrike

Thrad for the ongoing mini-apocalypse.

Quote:
Originally Posted by JoeP View Post
If you are involved in IT in any way you've probably heard about this massive global outage of Microsoft servers and desktops due to a duff update from security firm Crowdstrike, or Clownstrike as they're now known.

‘Largest IT outage in history’ hits Microsoft Windows and causes global chaos — The Guardian

CrowdStrike fixes start at "reboot up to 15 times" and get more complex from there | Ars Technica
2 of my direct reports (and maybe the 3rd but he's out on jury duty so he may not have tried to log on yet) are out of commission, but mine own self and the rest of the team seem fine. My IT department says they've scrubbed all of the company servers, and are slogging through getting individual equipment back up, but "Please note that, unfortunately, we are finding a handful of computers cannot be recovered and will need replacement." :mindblow:
__________________
hide, witch, hide / the good folks come to burn thee / their keen enjoyment hid behind / a gothic mask of duty - P. Kantner

:sockpuppet:...........
Reply With Quote
Thanks, from:
Ensign Steve (07-20-2024), fragment (07-19-2024), JoeP (07-20-2024), viscousmemories (07-20-2024), vremya (07-20-2024)
  #2  
Old 07-19-2024, 10:26 PM
Crumb's Avatar
Crumb Crumb is offline
Adequately Crumbulent
 
Join Date: Jan 2005
Location: Cascadia
Gender: Male
Posts: LXMMDCCXXXI
Blog Entries: 22
Images: 355
Default Re: Clownstrike

Didn't notice it at all at my workplace. :shrug:
__________________
:joecool2: :cascadia: :ROR: :portland: :joecool2:
Reply With Quote
  #3  
Old 07-19-2024, 11:39 PM
specious_reasons's Avatar
specious_reasons specious_reasons is offline
here to bore you with pictures
 
Join Date: May 2009
Posts: VCDXCII
Images: 8
Default Re: Clownstrike

I am mostly working, but this caused a shitstorm on the service I work on.

The public reports seem accurate. Clownstrike pushed an update onto Windows servers in the cloud which blue-screened a lot of cloud compute. They backed out of the update once they discovered the problem, but it's kind of hard to recover once the file causing the BSOD is actually on the computer. If you're lucky, the system will download the patched version before loading the borked one and come up. If you're not, it's not a trivial thing to deal with it.

Most cloud compute updates automatically. Nobody wants to be manually updating thousands of servers, so shit like this is automated. There's supposed to be strategies to roll out updates that minimize the damage if something bad happens. I wonder who pushed a broken update into production systems?
__________________
ta-
DAVE!!!
Reply With Quote
Thanks, from:
Crumb (07-20-2024), Ensign Steve (07-19-2024), JoeP (07-20-2024), Sock Puppet (07-19-2024), viscousmemories (07-20-2024), vremya (07-20-2024)
  #4  
Old 07-20-2024, 12:00 AM
Ensign Steve's Avatar
Ensign Steve Ensign Steve is offline
California Sober
 
Join Date: Jul 2004
Location: Silicon Valley
Gender: Bender
Posts: XXXMMCCCXLIV
Images: 66
Default Re: Clownstrike

I found this comment on LinkedIn fairly insightful.

Quote:
You're right, patches should be tested in a subset of your infrastructure to ensure functionality and security. The problem is that this process is commonly done for Operating Systems and production applications, but tend to exclude endpoint security software. The idea that it is safer to gamble on the integrity of the patch vs the threat of a new exploit.

This event might shatter that construct and force an adjustment to the test plans to include security software to that mentioned 5%.
__________________
:kiwf::smurf:
Reply With Quote
Thanks, from:
Crumb (07-20-2024), fragment (07-20-2024), JoeP (07-20-2024), Sock Puppet (07-20-2024), specious_reasons (07-20-2024), viscousmemories (07-20-2024), vremya (07-20-2024)
  #5  
Old 07-20-2024, 12:06 AM
Ensign Steve's Avatar
Ensign Steve Ensign Steve is offline
California Sober
 
Join Date: Jul 2004
Location: Silicon Valley
Gender: Bender
Posts: XXXMMCCCXLIV
Images: 66
Default Re: Clownstrike

At my jerb, managers' laptops are fucked, but engineers are fine because we are on macs. And all our actual services run on non-MS cloud servers, so no issues there. Other than some individuals being mildly inconvenienced, in that they can only access their emails, slack, and google docs via phones, tablets, or a spare uncompromised laptop, you can't even tell there was an incident by looking around.
__________________
:kiwf::smurf:
Reply With Quote
Thanks, from:
JoeP (07-20-2024), Sock Puppet (07-20-2024), viscousmemories (07-20-2024), vremya (07-20-2024)
  #6  
Old 07-20-2024, 12:16 AM
specious_reasons's Avatar
specious_reasons specious_reasons is offline
here to bore you with pictures
 
Join Date: May 2009
Posts: VCDXCII
Images: 8
Default Re: Clownstrike

Endpoint security software is just as vulnerable to bugs as any other software, I don't agree with that priority.
__________________
ta-
DAVE!!!
Reply With Quote
Thanks, from:
Crumb (07-20-2024), Ensign Steve (07-20-2024), Sock Puppet (07-20-2024), viscousmemories (07-20-2024), vremya (07-20-2024)
  #7  
Old 07-20-2024, 12:21 AM
Ensign Steve's Avatar
Ensign Steve Ensign Steve is offline
California Sober
 
Join Date: Jul 2004
Location: Silicon Valley
Gender: Bender
Posts: XXXMMCCCXLIV
Images: 66
Default Re: Clownstrike

Yeah I don't necessarily agree either, but I understand the point about the risk trade off.
__________________
:kiwf::smurf:
Reply With Quote
Thanks, from:
specious_reasons (07-20-2024)
  #8  
Old 07-20-2024, 02:07 AM
vremya's Avatar
vremya vremya is offline
Crafty Agitator
 
Join Date: Jul 2007
Location: Minneapolis MN
Gender: Female
Posts: VMCC
Images: 1
Default Re: Clownstrike

It didn't affect me either, but there was a big EXPECT DELAYS - CHECK FLIGHTS sign at the airport entrance
__________________
:tigerrawr:
Reply With Quote
Thanks, from:
Ensign Steve (07-20-2024), JoeP (07-20-2024), viscousmemories (07-20-2024)
  #9  
Old 07-20-2024, 05:10 AM
ceptimus's Avatar
ceptimus ceptimus is offline
puzzler
 
Join Date: Aug 2004
Location: UK
Posts: XVMMMIX
Images: 28
Default Re: Clownstrike

Some parts of the world more affected than others, because of how the world spins on its axis, and the relative position of the sun. Computers tend to check for, and apply, updates in the wee small hours when they're less busy. The rollout started in Asia and Australia and then moved to Europe. Before America was badly hit, one of the clowns at Clownstrike had noticed something was wrong, and pulled the update.
__________________
Reply With Quote
Thanks, from:
Crumb (07-20-2024), Ensign Steve (07-20-2024), fragment (07-20-2024), JoeP (07-20-2024), slimshady2357 (07-20-2024), Sock Puppet (07-22-2024), viscousmemories (07-20-2024)
  #10  
Old 07-20-2024, 08:50 AM
Miisa's Avatar
Miisa Miisa is offline
Dancing redshirt
 
Join Date: Aug 2005
Location: Hellmouth
Posts: VCDLXVIII
Default Re: Clownstrike

I dodged this bullet as CrowdStrike is not in use in my area at all afaik, didn't get a single IT contact about it apart from some users had issues with certain sites and programs being slow etc., and M365 apparently stopped working for a while there. Of course, that was just luck on my part.
Still was counting the minutes until I could clock out and declare myself safe from the looming shitornado as the panic about it had been rising my entire work day at UTC +3.

Also, 90% of users and IT workers alike were on holiday.
__________________
:roadrun:
Reply With Quote
Thanks, from:
JoeP (07-20-2024)
  #11  
Old 07-20-2024, 10:00 AM
JoeP's Avatar
JoeP JoeP is offline
Solipsist
 
Join Date: Jul 2004
Location: Kolmannessa kerroksessa
Gender: Male
Images: 18
Default Re: Clownstrike

Quote:
Originally Posted by ceptimus View Post
Some parts of the world more affected than others, because of how the world spins on its axis, and the relative position of the sun.
:twilightzone:
__________________

:roadrun:
Free thought! Please take one!

:unitedkingdom:   :southafrica:   :unitedkingdom::finland:   :finland:
Reply With Quote
  #12  
Old 07-20-2024, 04:17 PM
JoeP's Avatar
JoeP JoeP is offline
Solipsist
 
Join Date: Jul 2004
Location: Kolmannessa kerroksessa
Gender: Male
Images: 18
Default Re: Clownstrike

Massive insider trading alert for CrowdStrike days before global outage

I'm sure it's a complete coincidence.
__________________

:roadrun:
Free thought! Please take one!

:unitedkingdom:   :southafrica:   :unitedkingdom::finland:   :finland:
Reply With Quote
Thanks, from:
viscousmemories (07-20-2024)
  #13  
Old 07-20-2024, 04:19 PM
JoeP's Avatar
JoeP JoeP is offline
Solipsist
 
Join Date: Jul 2004
Location: Kolmannessa kerroksessa
Gender: Male
Images: 18
Default Re: Clownstrike

ded68163e370da37.png
__________________

:roadrun:
Free thought! Please take one!

:unitedkingdom:   :southafrica:   :unitedkingdom::finland:   :finland:
Reply With Quote
Thanks, from:
Crumb (07-20-2024), Ensign Steve (07-20-2024), Pan Narrans (07-21-2024), Sock Puppet (07-22-2024), specious_reasons (07-20-2024)
  #14  
Old 07-20-2024, 04:22 PM
JoeP's Avatar
JoeP JoeP is offline
Solipsist
 
Join Date: Jul 2004
Location: Kolmannessa kerroksessa
Gender: Male
Images: 18
Default Re: Clownstrike



This is pretty representative
Attached Images
File Type: png aa490550c638ce3f.png (334.8 KB, 36 views)
__________________

:roadrun:
Free thought! Please take one!

:unitedkingdom:   :southafrica:   :unitedkingdom::finland:   :finland:
Reply With Quote
Thanks, from:
slimshady2357 (07-20-2024)
  #15  
Old 07-20-2024, 05:40 PM
ceptimus's Avatar
ceptimus ceptimus is offline
puzzler
 
Join Date: Aug 2004
Location: UK
Posts: XVMMMIX
Images: 28
Default Re: Clownstrike

The CEO of Clownstrike was only paid $38 million last year. Obviously they need to pay more to get a more competent leader.
__________________
Reply With Quote
Thanks, from:
Ensign Steve (07-20-2024), JoeP (07-20-2024), Pan Narrans (07-21-2024), Sock Puppet (07-22-2024), viscousmemories (07-20-2024)
  #16  
Old 07-24-2024, 01:32 AM
Kamilah Hauptmann's Avatar
Kamilah Hauptmann Kamilah Hauptmann is offline
Shitpost Sommelier
 
Join Date: Mar 2016
Posts: XVMMCCCX
Default Re: Clownstrike

mqbik0yqnkdd1.png
__________________
Peering from the top of Mount Stupid

:AB: :canada:
Reply With Quote
Thanks, from:
JoeP (07-24-2024)
Reply

  Freethought Forum > The Marketplace > Computers & Technology


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

 

All times are GMT +1. The time now is 04:00 PM.


Powered by vBulletin® Version 3.8.2
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Page generated in 0.27854 seconds with 14 queries