SPARTAN VI
[H]F Junkie
- Joined
- Jun 12, 2004
- Messages
- 8,960
That's gotta be a joke.
![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
Global Microsoft outage hits due to CrowdStrike Update Definitions
- Thread starter erek
- Start date
Darunion
Supreme [H]ardness
- Joined
- Oct 6, 2010
- Messages
- 6,515
has to be, they would lose so much credibility for that kind of thing.
Also if true I can't imagine it opens up a lot of opportunities for this guy either.
Has to be. Onboarding takes at least a week everywhere these days, if not more.
Otoh, when I was at Facebook, it was pretty common for an intern to take the whole site down every summer, with a little help from broken process.
Although, the latest rounds of whole FB downtime seem to be related to full time devs, with broken process.
This incident seems like a clear case study in why nearly all updates need to be staggered and stopped when a significant number of updated clients don't come back after update. It's one thing if you take down 10% of online customer machines, it's another when you take them all down.
erek
[H]F Junkie
- Joined
- Dec 19, 2005
- Messages
- 12,747
I don’t know if it’s true or not yet
At this point even the Salvation Army could conquer us.
Imagine if this shit happened to iphones, an entire generation would devolve to infancy.....meanwhile the rest of us comfortably over 40 would proceed un-phased and unaware.......
To all of you rocking the IT ADMIN SySOP Roles, We Thank You For Your Service. \m/
SPARTAN VI
[H]F Junkie
- Joined
- Jun 12, 2004
- Messages
- 8,960
Quick google fu, some random no name website (afaik) says hoax/satire.
https://www.outlookindia.com/intern...bal-microsoft-outage-in-viral-satirical-video
(Edit) Yeah 100% fake. Here's the photo he used to chop himself over it.
erek
[H]F Junkie
- Joined
- Dec 19, 2005
- Messages
- 12,747
DukenukemX
[H]F Junkie
- Joined
- Jan 30, 2005
- Messages
- 8,988
DukenukemX
[H]F Junkie
- Joined
- Jan 30, 2005
- Messages
- 8,988
No Linux or Mac machines were effected here.
SPARTAN VI
[H]F Junkie
- Joined
- Jun 12, 2004
- Messages
- 8,960
Yeah 100% fake. Here's the source image he used in his chop.
erek
[H]F Junkie
- Joined
- Dec 19, 2005
- Messages
- 12,747
![Zarathustra[H]](/data/avatars/m/9/9298.jpg?1723407683){kind=avatar}
Zarathustra[H]
Extremely [H]
- Joined
- Oct 29, 2000
- Messages
- 40,853
Funnily enough I guess I have the good fortune of being completely unaffected by this one.
My work is unaffected, my home is unaffected and none of the services I use seem affected.
Just good luck I guess.
My work is unaffected, my home is unaffected and none of the services I use seem affected.
Just good luck I guess.
Not sure if serious.... the green screen effect is a little bit visible yes, but even if it was perfect, this is so obviously a joke.... (the paid twitter account, the content, the idea that a new of this day hire could push in production at a job like that, the taken the afternoon off joke in it etc....)
You can make Win10 and 11 run on a toaster if you need to.
And the fact a single software update could do this tells you one important thing.
These companies are finally doing their god damned updates!!!
Microsoft has made remotely managing, updating, validating, securing, etc… easy to handle with a small team.
Domained machine with GPO, Intune, and Intel vPro with an EMA server makes this somewhat trivial
Deploy the fix to GPO or Intune, and EMA can remotely issue the boot to safe mode via a console script to any machine with wake on LAN enabled.
So assuming they have the correct tools in place once the fix is determined it could be deployed by one person to 10,000+ machines with a few button clicks.
erek
[H]F Junkie
- Joined
- Dec 19, 2005
- Messages
- 12,747
Sanctioned Russia Emerges Unscathed in Global IT Outagemsmash 20 minutes ago | 9 |
| Russian officials boasted on Friday that Moscow was spared the impact of the global IT systems outagebecause of its increased self-sufficiency after years of Western sanctions, though some experts said Russian systems could still be vulnerable. From a report: Microsoft and other IT firms have suspended sales of new products in Russia and have been scaling down their operations in line with sanctions imposed over Russia's war in Ukraine, which Moscow describes as a special military operation. The Kremlin, along with companies from state nuclear giant Rosatom, which operates all of Russia's nuclear plants, to major lenders and airlines, reported no glitches amid the outage that affected international companies across the globe. "The situation once again highlights the significance of foreign software substitution," Russia's digital development ministry said. Russian financial and currency markets also ran smoothly. |
I'm in NYC and it seems a lot of gov't offices/hospitals/airport computers were affected...
"Jail cameras, arrest processing software and other city governmental functions were affected by the outage Friday, but 911 and emergency systems remained untouched, city officials said"
https://nypost.com/2024/07/19/us-ne...are-down-in-unprecedented-global-tech-outage/
"Jail cameras, arrest processing software and other city governmental functions were affected by the outage Friday, but 911 and emergency systems remained untouched, city officials said"
https://nypost.com/2024/07/19/us-ne...are-down-in-unprecedented-global-tech-outage/
A Windows version from 1992 is saving Southwest’s butt right now
https://www.yahoo.com/news/windows-...ShjNS4ML1egRRggEPC3m7p5rZ7jPzFbV-5TsunaOLDUlL
Doesn't this require safe mode ?
pendragon1
Extremely [H]
- Joined
- Oct 7, 2000
- Messages
- 62,276
lol apparently thats why, theyre still on w95/3.1
pendragon1
Extremely [H]
- Joined
- Oct 7, 2000
- Messages
- 62,276
if its just replacing a file, any way you can access "c:" should work
Zarathustra[H]
Extremely [H]
- Joined
- Oct 29, 2000
- Messages
- 40,853
I think Microsoft still has a chokehold on everything client-side. Businesses want to use Microsoft Office / Outlook, and they want to be able to run readily available commercial software that is windows based, and they often prefer to manage a minimal number of different configurations, and thus just roll out windows organization wide for everything. It doesn't hurt that the default configuration for every OEM they have contracts with is usually windows based.
Now backend/server side there is a lot of unix/linux stuff, but in my career spanning some 10 different manufacturing / engineering development companies, outside of the random spoiled executive who gets what he wants, and IT makes an exception for, I have never seen anything but Windows client side in the office.
Seriously glad that this kind of fix works
Otherwise the poor support guys will be stressed too much
Zarathustra[H]
Extremely [H]
- Joined
- Oct 29, 2000
- Messages
- 40,853
MrGuvernment
Fully [H]
- Joined
- Aug 3, 2004
- Messages
- 22,366
Ya, or booting into safe mode to see if the falcon will pull the updated file before the old one BSOD's the system.
Zarathustra[H]
Extremely [H]
- Joined
- Oct 29, 2000
- Messages
- 40,853
Shit, that actually works? I saw that a few hours ago, butt I thought that was just some sort of joke or meme.
How does that even work? Is there some sort of built in automatic roll-back of kernel drivers if you are forced to reboot lots of times?
What if your server has AMD?
pendragon1
Extremely [H]
- Joined
- Oct 7, 2000
- Messages
- 62,276
would be as bad as any disk encryptionMust be fun to deal with bitlocker
Apparently it works if you have a fast network & new version of the file is downloaded
How do you access c: in a system that is not booting
But apparently there is a work-around
pendragon1
Extremely [H]
- Joined
- Oct 7, 2000
- Messages
- 62,276
the same way we always have, a live boot of some sort. windows installer, hirens, a linux live disk etc etc. of course this will vary by situation and may not be possible remotely...
also, see post below.
yes, there are a couple now.
jlbenedict
2[H]4U
- Joined
- May 22, 2005
- Messages
- 2,469
(this all depends on how you installed Windows... Do you have WinRE in its recovery partition)How do you access c: in a system that is not booting
We've been consoling into our VM's (vmware remote console)...
Right after BIOS post, F8... Safe Mode with Networking
Log in
Delete file... reboot
Inside the office I get, the big airlines/hostels chain computers that end up used to do the actual stuff with reservation to tickets terminal (that will not run office or any application other than the custom reservation system I thought), I thought those were less windows heavy by now.
But like Lakados pointed out, maybe Microsoft got really good at terminals type device management.
Jabroni31169
My Future Son-in-Law
- Joined
- Apr 19, 2000
- Messages
- 10,636
Same here, not really affecting any of my systems outside of one of our journaling vendors being down. Everyone wants to be in the cloud until the cloud goes down because its just someone else's computer
vPro lets you boot to safe mode and get access to it remotely from the Intel EMA server.
So yes safe mode required but there are tools for that.
your servers should have some form of static IPMI which again works independently of the booted OS and there are management tools for that.
Intel vPro for desktops, laptops, and workstations is a lifesaver when shit like this happens though.
MrGuvernment
Fully [H]
- Joined
- Aug 3, 2004
- Messages
- 22,366
This isnt an MS OS problem, this was CrowdStrike doing a crap-tastic release that was clearly not thoroughly tested. Sophos did something similar a couple years ago and before that McAfee did something similar that completely hosed windows boot records.
MrGuvernment
Fully [H]
- Joined
- Aug 3, 2004
- Messages
- 22,366
I think it just comes more down to luck of the Falcon app what ever reaching out and grabbing the new files before the bad file kills windows.
I like SentinelOne, check it out.
It’s “working” for us in that we have it and it haven’t had an attack or incident where it’s services were required.