[Discuss] CrowdStrike
Rich Pieri
richard.pieri at gmail.com
Wed Jul 24 17:10:43 EDT 2024
Also CrowdStrike's preliminary post-incident review is out. Bleeping
Computer cites, "Rapid Response Content uses automated testing instead
of being tested locally on internal devices, which would likely have
detected the issue."
In other words, CrowdStrike's testing does *not* include installing on
actual systems.
https://www.bleepingcomputer.com/news/security/crowdstrike-content-validator-bug-let-faulty-update-pass-checks/
CrowdStrike say they will add local device testing to their procedures.
--
\m/ (--) \m/
More information about the Discuss
mailing list