…according to a Twitter post by the Chief Informational Security Officer of Grand Canyon Education.

So, does anyone else find it odd that the file that caused everything CrowdStrike to freak out, C-00000291-
00000000-00000032.sys was 42KB of blank/null values, while the replacement file C-00000291-00000000-
00000.033.sys was 35KB and looked like a normal, if not obfuscated sys/.conf file?

Also, apparently CrowdStrike had at least 5 hours to work on the problem between the time it was discovered and the time it was fixed.

  • the_crotch
    link
    fedilink
    English
    arrow-up
    12
    ·
    4 months ago

    In this case it was “burn down the venue”.

    It was more like “barricade the doors until a swat team sniper gets a clear shot at you”.

    • deadbeef79000@lemmy.nz
      link
      fedilink
      English
      arrow-up
      12
      arrow-down
      1
      ·
      4 months ago

      Hmmmm.

      More like standing there and loudly shitting your pants and spreading it around the stage.