So who else's day is made much more fun with Crowdstrike blowing up? We fortunately have limited exposure to Crowdstrike and it's all-hands-on-deck with the trickle-down impact. I can't imagine large firms with large remote workforces are doing.
The job was just recommended to me on LinkedIn so I assume he is gone.I'm flying today, so it's been a real hoot. Allegiant flight was cancelled so I rebooked on Southwest immediately. Southwest's people were all smiles, and noted that they were entirely unaffected. I suppose I shouldn't be surprised.
Also, a medical provider I had to swing by had all their systems down, so they couldn't deal with me unless I'd happened to bring paper printouts of the stuff they could've normally just pulled up on the screen.
Good lesson on systems resilience, I guess. But man, how about the Crowdstrike engineering manager who approved the merge that broke everyone's system? He's gonna have to join a Tibetan monastery. Engineers make typos and bad code all the time, that's life, but it's irresponsible management that fails to invest enough in QA processes or code review.
Stolen from some previous outage but recycling it here seems appropriate:Good lesson on systems resilience, I guess. But man, how about the Crowdstrike engineering manager who approved the merge that broke everyone's system? He's gonna have to join a Tibetan monastery. Engineers make typos and bad code all the time, that's life, but it's irresponsible management that fails to invest enough in QA processes or code review.
I love this so much
Some of those are fantasticI was going to post some surgically removed memes but... what the Hell...
https://trending.ebaumsworld.com/pictures/the-funniest-crowdstrike-outage-memes/87574029/
And even scarier that they run unvetted 3rd-party binary code in kernel mode. That's insane from a stability and security perspective, especially for a product purporting to be security-focused.Pretty scary that people use Windows for anything other than video games and word documents.
Add onto that, their public security posture seems to be based around marketing rather than good practices. Every time I've seen them "certify" something as secure it leaves more questions for me. Namely, they never ask (or atleast never publish) what processes that they identified along with tech controls. I could have the least secure machine ever with the best processes ever and it would be more secure than the most secure machine ever surrounded by the worst practices ever.And even scarier that they run unvetted 3rd-party binary code in kernel mode. That's insane from a stability and security perspective, especially for a product purporting to be security-focused.
I drove to Starbucks and they were open but had a canned response prepared about being down. They then offered me free hot or iced coffee. I was happy.This shut down Starbucks’ mobile order abilities so it’s personal now.
Went to get my $3 drink. It felt like going to SBUX in the early 2000s: order at the cashier, baristas wrote shorthand your drink on the cup. The good ol' daysThis shut down Starbucks’ mobile order abilities so it’s personal now.
Looks like they have no plans to. Honestly it would be insane to purchase Crowdstrike going forward without them publicly addressing their QA shortcomings instead of blaming Microsoft.I got to admit Crowdstrike is doing an amazing job obfuscating how bad they fucked up. I am really worried this is not a wake up call to tighten their QA.