fsebugoutzone.org:9999

       Post AkI2hWkGpaylVvhSpU by lanodan@queer.hacktivis.me
 (DIR) More posts by lanodan@queer.hacktivis.me
 (DIR) Post #AkI0HMg7RBoqr29go4 by rysiek@mstdn.social
       2024-07-25T12:40:42Z
       
       0 likes, 1 repeats
       
       Hey #SysAdmin #InfoSec fedi, let&#39;s have some fun. 🥳 Microsoft claims that the CrowdStrike thing is EU&#39;s fault, acktschually, because years ago EU forced Microsoft to stop abusing their privileged Windows access to have an edge over competitors in the antivirus market. 🤨 Seems only fair to have a thread on our favorite examples of a Microsoft&#39;s utter failures, ideally related to completely botched updates.Know of such a failure? Share it below! :blobcateyes: #Microsoft #CrowdStrike #EU
       
 (DIR) Post #AkI0ddigl5RO4uyk2i by rysiek@mstdn.social
       2024-07-25T12:45:41Z
       
       1 likes, 0 repeats
       
       I&#39;ll start!That time when there was a 0-day in Windows Defender (mpengine.dll) that was exploitable with a few lines of JavaScript.It was so bad that Google Project Zero allegedly had to send Microsoft the info… inside an Ubuntu VM (but don&#39;t quote me on that).https://arstechnica.com/information-technology/2017/05/windows-defender-nscript-remote-vulnerability/Wasn&#39;t the last critical 0-day in Windows Defender, of course! Here&#39;s another:https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-1647.html#Microsoft #InfoSec
       
 (DIR) Post #AkI0dengjz2BQiKFTU by volpeon@is-a.wyvern.rip
       2024-07-25T12:51:16.302Z
       
       1 likes, 1 repeats
       
       @rysiek@mstdn.social Microsoft released an update just after the CrowdStrike event which might send you to the BitLocker recovery screen: https://www.theregister.com/2024/07/24/windows_update_bitlocker/Not exactly severe since the system will work fine after the recovery process, but the timing is gold.
       
 (DIR) Post #AkI2hWkGpaylVvhSpU by lanodan@queer.hacktivis.me
       2024-07-25T13:13:57.229574Z
       
       0 likes, 0 repeats
       
       @rysiek Well Microsoft Azure also got a major outage right before CrowdStrike on July 18 (the day before), quite wonder what happened there, wikipedia sources newspapers but those seem to be mixing the two.
       
 (DIR) Post #AkI2lWVHfiLfvGaztw by silverwizard@convenient.email
       2024-07-25T13:09:53Z
       
       1 likes, 0 repeats
       
       @rysiek They had a 6 hour Office 365 outage *before* the CrowdStrike issue, and then hid behind CrowdStrike