ELI5 how this could happen?
Working in IT myself, this is incomprehensible. Every common practice and process has been violated for this to even have happened, not just by CrowdStrike but especially by the customers.
Every damn backyard or garage dev stages any kind of change or patch. Multiple times. A new patch doesn’t just appear on a live / production environment.
This is exactly what must have happened here though, it sounds like some idiots had auto updates enabled and companies even rolled it out to the whole workforce without any checks.
How is this possible? Who in their right mind does not deploy updates, especially of critical security systems, to an isolated dev environment first? I just don’t get it! This should not have been able to happen at all, it was 100% avoidable by following proper procedures. I hope many IT departments in the affected companies get purged for this gross incompetence
Latest Answers