CrowdStrike downtime apparently caused by update that replaced a file with 42kb of zeroes Spanish

bjoern_tantau , 4 hours ago

Ah, a classic off by 43,008 zeroes error.

TropicalDingdong , 3 hours ago

If you listen closely, you can hear this file.

Gork , 4 hours ago

How can all of those zeroes cause a major OS crash?

MajinBlayze , 4 hours ago

Because it’s supposed to be something else

jared , 4 hours ago

At least a few 1’s I imagine.

Iheartcheese , 3 hours ago

What if we put in a 2

kinkles , 3 hours ago

Society isn’t ready for that

NaibofTabr , 3 hours ago

https://i.pinimg.com/originals/b4/c8/9b/b4c89b3ad34e7bc2799bd3f0bdb8d7e4.png

thurstylark , 2 hours ago

Well, you see, the front fell off.

tiramichu , 4 hours ago

If I send you on stage at the Olympic Games opening ceremony with a sealed envelope

And I say “This contains your script, just open it and read it”

And then when you open it, the script is blank

You’re gonna freak out

Gork , 4 hours ago

Ah, makes sense. I guess a driver would completely freak out if that file gave no instructions and was just like “…”

PriorityMotif , 46 minutes ago

You would think that Microsoft would implement some basic error handing.

planish , 28 minutes ago

That’s what the BSOD is. It tries to bring the system back to a nice safe freshly-booted state where e.g. the fans are running and the GPU is not happily drawing several kilowatts and trying to catch fire.

sigmaklimgrindset , 2 hours ago

Great layman’s explanation.

Imgonnatrythis , 1 hour ago

Maybe. But I’d like to think I’d just say something clever like, “says here that this year the pummel horse will be replaced by yours truly!”

Hazzia , 1 hour ago

I’m gonna take from this that we should have AI doing disaster recovery on all deployments. Tech CEO’s have been hyping AI up so much, what could possibly go wrong?

driving_crooner , 3 hours ago (edited 3 hours ago)

The file is used to store values to use as denominators on some divisions down the process. Being all zeros is caused a division by zero erro. Pretty rookie mistake, you should do IFERROR(;0) when using divisions to avoid that.

sugar_in_your_tea , 2 hours ago

I disagree. I’d rather things crash than silently succeed or change the computation. They should have done better input and output validation, and gracefully fail into a recoverable state that sends a message to an admin to correct. A divide by zero doesn’t crash a system, it’s a recoverable error they should 100% detect and handle, hot sweep under the rug.

driving_crooner , 1 hour ago

Life pro tip: if you’re a python programmer you should use try: func() except: continue every time you run a function, that way ypu would never have errors on your code.

sugar_in_your_tea , 7 minutes ago

Lol.

urquell , 3 hours ago

Well, the file shouldn’t be zeroes

LodeMike , 2 hours ago

Windows

diffusive , 4 hours ago

If I had to bet my money, a bad machine with corrupted memory pushed the file at a very final stage of the release.

The astonishing fact is that for a security software I would expect all files being verified against a signature (that would have prevented this issue and some kinds of attacks

LodeMike , 2 hours ago

Which is still unacceptable.

LodeMike , 2 hours ago

Which is still unacceptable.

cupcakezealot , 3 hours ago

have they ruled out any possibility of a man in the middle attack by a foreign actor?

db2 , 3 hours ago

Or it being an intentional proof of concept

simplejack , 2 hours ago

This was not a cyberattack.

crowdstrike.com/…/statement-on-falcon-content-upd…

I guess they could be lying, but if they were lying, I don’t know if their argument of “we’re incompetent” is instilling more trust in them.

xavier666 , 2 hours ago

“We are confident that only our engineers can fuck up so much, instead of our competitors”

Kazumara , 1 hour ago

In the middle of the download path of all the machines that got the update?

planish , 31 minutes ago

Foreign to who?

kyle , 27 minutes ago

“Foreign” in this context just means “not Crowdstrike”, not like a foreign government.

independantiste , 3 hours ago

Every affected company should be extremely thankful that this was an accidental bug, because if crowdstrike gets hacked, it means the bad actors could basically ransom I don’t know how many millions of computers overnight

Not to mention that crowdstrike will now be a massive target from hackers trying to do exactly this

Miaou , 3 hours ago

I’d assume state (or other serious) actors already know about these companies.

Evotech , 3 hours ago

Don’t Google solar winds

planish , 32 minutes ago

Holy hell

qprimed , 2 hours ago

security as a service is about to cost the world a pretty penny.

Telorand , 2 hours ago

You mean it’s going to cost corporations a pretty penny. Which means they’ll pass those “costs of operation” on to the rest of us. Fuck.

qprimed , 2 hours ago

well, the world does include the rest of us.

and its not just opeerational costs. what happens when an outage lasts 3+ days and affects all communication and travel? thats another massive shock to the system.

they come faster and faster.

Manifish_Destiny , 1 hour ago

Where’s my fuckin raise

EleventhHour , 3 hours ago

<span style="color:#323232;">d'00000000 00000000 00000000 00000000 00000000
</span><span style="color:#323232;">00000000 00000000 00000000 00000000 00000000
</span><span style="color:#323232;">00000000 00000000 00000000 00000000 00000000
</span><span style="color:#323232;">00000000 00000000 00000000 00000000 00000000
</span><span style="color:#323232;">00000000 00000000 00000000 00000000 00000000
</span><span style="color:#323232;">00000000 00000000 00000000 00000000 00000000
</span><span style="color:#323232;">00000000 00000000 00000000 00000000 00000000
</span><span style="color:#323232;">00000000 00000000 00000000 00000000 00000000!
</span>