Delta: CrowdStrike’s offer for help too little, too late (www.theregister.com)
from kid@sh.itjust.works to cybersecurity@sh.itjust.works on 09 Aug 2024 11:57
https://sh.itjust.works/post/23437127

#cybersecurity

threaded - newest

IllNess@infosec.pub on 09 Aug 2024 12:33 next collapse

I want to see what ClownStrike’s lawyers are going to come up with as a defense.

“The Falcon’s main goal is to stop unknown intruders in to systems. Technically, they did a better job at that task than any other software in the history of computers with a machine with power.”

Empricorn@feddit.nl on 09 Aug 2024 13:00 next collapse

A half-assed defense until the retainer checks bounce? Seriously, there is no way CrowdStrike survives this. Reputation: gone. Delta is the first serious lawsuit. But it won’t be the last…

thefartographer@lemm.ee on 09 Aug 2024 13:04 next collapse

Look, no one is gonna come out of this one clean. Crowdstrike dropped the fucking ball, but Delta’s dev team appears to be completely made up by nephews of executives who say they’re geniuses because they’re great with Excel

deuleb_biezelbob@programming.dev on 09 Aug 2024 13:10 collapse

Dont underestimate Excel

snooggums@midwest.social on 09 Aug 2024 13:24 collapse

“Fuck your leading zeros.”

-Excel

IllNess@infosec.pub on 10 Aug 2024 05:03 collapse

You have to set the cell as text rather than a number.

I wonder if you can format a cell with a custom number type to have leading zeros…

snooggums@midwest.social on 10 Aug 2024 05:33 collapse

Making it text means it is something other than a number, but generally it has already screwed up the leading zeros by the time you have the opportunity to make it text.

You can set a special format if all the numbers are the same number of characters, but not for something like 0043 and 05467.

IllNess@infosec.pub on 10 Aug 2024 06:14 collapse

Thanks for the info.

I had the leading zero issue importing a CSV so I couldn’t set the cell type so I see your point.

Mikina@programming.dev on 09 Aug 2024 13:27 next collapse

A Delta spokesperson said the airline “will decline to comment further.” ®

Huh, did they really register that sentence? :D

Also, the CS response to the accusations should have been at the beginning, not near the end of the article, because it does provide some pretty important context, including links to LinkedIn posts from Delta board members that directly contradict most of the article:

When asked about this August 8 letter from Delta, a CrowdStrike spokesperson told The Register:

Delta continues to push a misleading narrative. CrowdStrike CEO George Kurtz called Delta board member David DeWalt within four hours of the incident on July 19th. CrowdStrike’s Chief Security Officer was in direct contact with Delta’s CISO within hours of the incident, providing information and offering support.

CrowdStrike’s and Delta’s teams worked closely together within hours of the incident, with CrowdStrike providing technical support beyond what was available on the website.

This level of customer support led Delta board member David DeWalt to publicly state on LinkedIn: “George and his team have done an incredible job, working through the night in difficult circumstances to deliver a fix. It is a huge credit to the Crowdstrike team and their leadership that many woke up to a fix already available.”

I’m all for CS having consequences for what happened, but Delta so obviously lying here with literal Linkedin posts from their board members that directly contradict what they are claiming, that’s just scummy.

intelisense@lemm.ee on 09 Aug 2024 13:36 next collapse

The A Delta spokesperson said the airline “will decline to comment further.” ®

Huh, did they really register that sentence? :D

The ® is appended to all articles on The Register since I’ve known it, some 20 years now…

thesmokingman@programming.dev on 09 Aug 2024 13:46 collapse

The Delta board post doesn’t contradict the accusations at all. It’s possible for that person to have worked through the night and for Delta to still be overly fucked. Direct contradiction is going to involve receipts. DeWalt specifically has a vested interest in the appearance of cybersecurity success as his firm, NightDragon, is heavily invested in cybersecurity and probably upsells for CrowdStrike.

Without receipts, we just have two very shitty companies taking swings at each other in the media. We should hate both for their exploitation and wait for receipts that will come with discovery.

Mikina@programming.dev on 09 Aug 2024 14:02 collapse

You are right, calling it a contradiction was not exactly accurate. Or rather - it did contradict some of the narrative that is pushed by Delta, about CS not providing any support in the first few days, which it sounds like isn’t exactly true. But most of the case will indeed still need more receipts, that’s true.

pastermil@sh.itjust.works on 09 Aug 2024 16:33 collapse

“Goddamnit, didn’t we already give you that $10 GrubHub coupon? We said we’re sorry, okay. Now stop being a whiny little bitch!”