Connor Gallagher’s Post

There are a lot of security and safety issues in our enterprises. The state of application security is basically a disaster. Shared responsibility creates a gap large enough to drive a Borg cube through. Vulnerability non-remediation litters our pipelines. Saas and cloud management leaves a lot to be desired. But all of that pales in comparison to our single greatest problem: the rampant proliferation of remote administration, which exposes us not just to the extremely rare CrowdStrike issue, but to the everyday ransomware and other lateral movement attacks. https://lnkd.in/e6FPNPh2

CrowdStrike, a growing cybersecurity firm, unwittingly triggered a massive IT outage on Friday, disrupting businesses, including healthcare, after issuing what was supposed to be a routine software update. The firm attempted to update its Falcon Sensor product, which protects data encrypted on the cloud from cyberattacks. However, there was a bug during deployment, with some Microsoft users experiencing a critical “blue screen” error, or what is known as the “blue screen of death,” blocking attempts to reboot. CrowdStrike CEO George Kurtz took to X early Friday morning in an attempt to ease clients’ concerns, stating the problem had been identified, isolated and a fix was in the works. “Mac and Linux hosts are not impacted. This is not a security incident or cyberattack,” Kurtz stressed. “Our team is fully mobilized to ensure the security and stability of CrowdStrike customers.” #crowdstrike #globaloutage #securityupdate

🛡️ 𝑺𝒆𝒄𝒖𝒓𝒊𝒕𝒚 1𝒐1: 𝒕𝒉𝒆 𝑪𝒓𝒐𝒘𝒅𝑺𝒕𝒓𝒊𝒌𝒆 𝒊𝒏𝒄𝒊𝒅𝒆𝒏𝒕 What to learn from the #CrowdStrike major IT failure? The disruption of their services and the whole world IT systems outages alarmed the industry. And not only! The software update failure caused a #cloud infrastructure collapse, worsened by ineffective redundancies and delayed incident response. Thousands of customers were impacted, revealing significant vulnerabilities. We need to understand the impact this outage has bring and reflect on how to improve our own policies: 👉🏻 testing the rigorous way (sandboxes, proper environments, strict checks) 👉🏻 develop a stronger aimed to prevent and minimize damages 👉🏻 be sure to be honest in communication 👉🏻 strengthen any redundancies to ensure environment safeness Moreover, there's another keypoint that should be considered ahead: the fall down of IT infrastructures will put the economic system on its knees. Be ready with an offline backup plan. #beCyberbeSafe #BCyber #infosec #threatintelligence

Zero Trust Security with Microsoft Entra is now generally available.

While many information channels are currently blaming Microsoft for the disastrous situation in airports, banks, hospitals, and 911 call centers this is not quite correct. For what we know recently, the global outage was caused by a CrowdStrike cybersecurity software. Two different outages happened at nearly the same time, and then, in a conspiracist manner, got linked in all news and media. Microsoft's outage impacting MS 365 and Power BI, which is gradually being restored now, was caused by a "configuration change in a portion of our Azure backend workloads" and does not affect the Windows OS. CrowdStrike's outage was caused by a bad update in its Falcon Sensor software, a "faulty channel file", which elicited the BSOD. The company is also gradually trying to mitigate the issue via an update rollback.

Largest IT Outage in History 🖥️🚨 July 19, 2024, is a day that millions of people will surely remember. The largest IT outage in history, caused by a faulty software update from CrowdStrike, disrupted hospitals 🏥, grounded flights ✈️, affected banks 🏦, and left the entire world standing still. The incident raised numerous questions about our daily reliance on technology and the extent to which we depend on it in our everyday actions. It has also been proven that it is not always the best strategy to rely on one giant, and how a well-chosen backup strategy can help minimize the impact of such accidents. Would you like to learn more about this topic? Click here👇https://lnkd.in/ewzkeWns #CrowdStrike #CrowdStrikeOutage #ITOutage2024 #TechFail #Cybersecurity #FalconSensor #SystemCrash #BlueScreenOfDeath #TechDisruption #BackupStrategy #TechNews #BSOD #TECHARROW #Backup #ThirdPartyBackup

When Microsoft employees exposed passwords in major security lapse Full Article Link >>> https://lnkd.in/gTGxg8hm Apr 12, 2024 08:52 AM IST The storage server was not protected with a password and could be accessed by anyone on the internet, security researchers said. Microsoft resolved a security lapse that exposed internal company files and credentials to the open internet, security researchers said. Can Yoleri, Murat Özfidan and Egemen Koçhisarlı with SOCRadar […] . . Latest IND . . . . #trendingnews #newstrending #trendingtopicnews #lifestyle #business #news #healthylifestyle #smallbusiness #supportsmallbusiness #lifestyleblogger #luxurylifestyle #businessowner #businesswoman #smallbusinessowner #businessnews

Another great Microsoft Article giving advice on securing your organisations identities with Microsoft Entra, #Entraid Free, P1 and P2. Guided walk through as well as some basic steps on enabling security defaults - https://lnkd.in/eHhQKnTB

When Microsoft employees exposed passwords in major security lapse Full Article Link >>> https://lnkd.in/gXA65iwU Apr 12, 2024 08:52 AM IST The storage server was not protected with a password and could be accessed by anyone on the internet, security researchers said. Microsoft resolved a security lapse that exposed internal company files and credentials to the open internet, security researchers said. Can Yoleri, Murat Özfidan and Egemen Koçhisarlı with SOCRadar […] . . Latest IND . . . . #trendingnews #newstrending #trendingtopicnews #lifestyle #business #news #healthylifestyle #smallbusiness #supportsmallbusiness #lifestyleblogger #luxurylifestyle #businessowner #businesswoman #smallbusinessowner #businessnews

Largest IT Outage in History 🖥️🚨 July 19, 2024, is a day that millions of people will surely remember. The largest IT outage in history, caused by a faulty software update from CrowdStrike, disrupted hospitals 🏥, grounded flights ✈️, affected banks 🏦, and left the entire world standing still. The incident raised numerous questions about our daily reliance on technology and the extent to which we depend on it in our everyday actions. It has also been proven that it is not always the best strategy to rely on one giant, and how a well-chosen backup strategy can help minimize the impact of such accidents. Would you like to learn more about this topic? Click here👇https://lnkd.in/e4CCYHPV #CrowdStrike #CrowdStrikeOutage #ITOutage2024 #TechFail #Cybersecurity #FalconSensor #SystemCrash #BlueScreenOfDeath #TechDisruption #BackupStrategy #TechNews #BSOD #TECHARROW #Backup #ThirdPartyBackup