Become IT? 🤔
EmPHAsis
… But it’s not malware like Solar winds became. It was just a botched update.
I hope they learn from this and implement update stages or groups so you don’t blow away an entire org again.
Goes into the kernel
Gives remote absolute view and control of the machine
Removes user’s rights
Is intended to allow the employer class control the employee classSounds like malware to me!
It’s not the users computer, it’s the employers. The user has no rights on it.
Is intended to allow c2 traffic to control to machine
so work elsewhere that doesn’t use it. You have no rights to a device you do not own.
I still have human rights, as well as rights to eg.: privacy. Also it’s not like they put “we use CrowdStrike” in their job offerings you know, so you saying to just “work elsewhere” reads whiny. And petty.
I still have human rights, as well as rights to eg.: privacy
I agree, but not on a device that is not owned or managed by you. Now, if your employer demanded you install it on your personal PC as a condition of employment then that is a completely separate issue
Any third party remotely deploying kernel-level spyware is malware. We as an industry shouldn’t accept this kind of behavior.
Is it really spyware if the device owner installs it deliberately? After all this application is not run on home or personal machines. It only runs in corporate environments where you do not own the equipment you use.
It become malicious when you start demanding IT departments to install insecure, untested kernel drivers. Crowdstrike did not own any of the millions of devices they just killed today.
Malicious requires intent. I have massive doubts CS wanted to deploy a Kernel driver full of NULL values to their clients. more likely a human error happened as part of a larger automated process.
Tomato potato
I wiped my computer last night because of that shitty virus. Good luck IT teams out there! lol
It rendered millions of machines unbootable
I am the threat
I am the walrus.
AV is a dead product
