|
Föderation EN Fr 19.07.2024 13:05:10 The thing I hope is alarming people about today's #CrowdStrike outage is that if the company can take out that much of America's tech infrastructure by accident with a single buggy update, our adversaries can do the same on purpose with a supply-chain attack against CrowdStrike, and that one probably wouldn't be as quick to recover from. #infosec |
|
Föderation EN Sa 20.07.2024 01:26:15 @jik It's tin foil hat territory, but this could have been an attack if you consider it a possibility that Crowdstrike's QA pipeline was compromised to allow this update through (or pass on a payload that is subtly different from the one that was verified). |
