Their announcement (see Reddit for example) says it was a “content deployment” i...

dboreham · 2024-07-19T08:35:29 1721378129

It's definitely the driver itself if it blue screens the kernel. Quite possibility data-sensitive of course.

baq · 2024-07-19T08:53:35 1721379215

https://x.com/brody_n77/status/1814185935476863321 [0]

The driver can't gracefully handle invalid content - so you're kinda both right.

[0] brody_n77 is:

   Director of OverWatch,
   CrowdStrike Inc.

jrochkind1 · 2024-07-19T14:03:39 1721397819

I came to HN hoping to find more technical info on the issue, and with hundreds of comments yours is the first I found with something of interest, so thanks! Too bad there's no way to upvote it to the top.

piyh · 2024-07-19T12:34:58 1721392498

Looks like a great way to bypass crowd strike if I'm an adversary nation state

everybodyknows · 2024-07-19T19:06:19 1721415979

Anyone copy the original text? Now getting: > Hmm...this page doesn’t exist. Try searching for something else

baq · 2024-07-20T08:45:28 1721465128

I don’t have the exact copy, but it said it was a ‘channel file’ which was broken.

rplnt · 2024-07-19T08:50:48 1721379048

It might have been a long-present bug in the driver, yes, but today's failure was apparently caused by content/data update.

easytiger · 2024-07-19T09:29:37 1721381377

In most appreciations of risk around upgrades in environments with which i am familiar, changing config/static data etc counts as a systemic update and is controlled in the same way

dalyons · 2024-07-19T10:04:05 1721383445

You would lose a lot of the benefits of a system like crowdstrike if you waited to slowly roll out malware definitions and rules.

easytiger · 2024-07-19T22:02:06 1721426526

Survived this long without such convenience. anything worth protecting lives behind a firewall anyway