[Discuss] CrowdStrike Fiasco

[richard.pieri at gmail.com (Rich Pieri)]

On Mon, 22 Jul 2024 13:42:09 -0700
Kent Borg <kentborg at borg.org> wrote:

> Isn't that what Falcon customers are paying for, automatic
> installation of updates? Isn't that the religion at the moment?
> Aren't some people trying to make selling Internet of Shit (I mean
> Internet of Things) devices illegal if they *don't* automatically
> deploy updates?

Yeah, the rapid updates is a keystone "feature" of XDR -- eXtended
Detection and Response -- systems like Falcon and Cortex.

> The idea that Crowdstrike is so confident that they don't roll out
> new revisions a little gradually is pretty damning.

Given my prior experience with SentinelOne and current experience
with Cortex? It's not just Falcon. It's that entire sector of the
software industry.

> And for a product that can BSoD Microsoft machines?is there any way
> they could make that failsafe? Have it rollback when there is a
> problem? Or does cool-aid drinking make that a non-starter, because
> Crowdstrike moves fast and breaks things on purpose?

Could they? Sure. Will they? I doubt it. Mostly it's "we'll fix that in
the next release." Occasionally it's vague, noncommittal evasion like
what we get from PaloAlto every time someone mentions WSL v2.

-- 
\m/ (--) \m/