Less concerned about Crowdstrike since it’s not their product.
More concerned about Copilot:
https://www.wired.com/story/microsoft-copilot-phishing-data-extraction/
That seems a bit of a non-story given that its prefaced on “once the attacker has access to your work email”. Yes once they have that they can do very good spear phishing attacks using copilot, but they could easily do them without copilot too.
This 3rd party software company fucked up and M$oft get the pressure, so they act like they are responsible.
Even the customers fucked up by using a vital piece of software where they cannot test the updates before rollout.
Right? I wish they’d respond like this when they themselves fuck up.
A third party vendor whose entire business model is predicated on the fact that security is such an afterthought at Microsoft that enterprise customers need to resort to this kind of crap for a bare minimum of security.
🙄 because FOSS never has any serious cve and malicious code.
Never said it didn’t. Doesn’t change the fact that Microsoft is notoriously worse by every metric and because of its position in the market is far more potentially damaging. Almost like if you sell an OS as something that can be trusted to run mission critical applications, you probably shouldn’t phone it in when it comes to securing that OS.
🙄👌👍
Definitely just not easier to use even you don’t want to fuck around in the terminal.
lol tell me you’ve never used linux without telling me you’ve never used linux
Contributor to TF and several CNCF projects. You use my code every day. Different tools different jobs twat.
Apologies, I misread your comment as saying you had to use the terminal to use Linux (I was drunk ngl). I still believe Linux is easier to use than Windows with the caveat that the easiest system to use will always be the one you have the most experience with. I switched from MacOS/Windows to Fedora on my personal machine a few months ago and it’s been smooth sailing for me, though I have always used Linux at least somewhat (I work in cyber security), so that has probably helped.
Dismissing Linux as a tool for a different job (ie not personal/business computing) is an odd position to take for someone with your experience.
This is also MS’s fault because they never provided a proper API for security products like MacOS, so they end up having to run them all inside the kernel.
The reason for this omission was to give a competitive advantage to their own security products while also being cheaper.
Your PC ran into a problem that Microsoft couldn’t handle.
Didn’t 5h3y just release an update that bricked dual boot installs. Something tells me someone else should be organising this. Someone that actually cares.
So are they going to reassess the capability of kernel level drivers like crowdstrike and anticheat solutions like vanguard? Because of they keep this capability open then they’re just asking for another fuck up.
They had better bring up that Secure Boot f up too
Do not use windows or Microsoft solutions. That’s security rule #1.
For that to work, the hardware vendors should sell hardware that has opensource code that is easily corrected if there’s a security or other type of problem. For that to happen, Microsoft and other such companies need to stop monopolizing technologies. The government should make some changes to their parenting system. For example it should be illegal for companies to force their scientists and engineers to sell their patents automatically to the company. Instead only human people who can invent things should be the owners of the things they invent. If a company wants to keep a hold on that tech, keep the people who invented it happy. Let them own their tech so they can decide to sell it, trade it or make it free. Make it such that only people and not corporations can actually own the patents. Inquire and investigate companies that don’t follow the rules.
it should be illegal for companies to force their scientists and engineers to sell their parents automatically to the company
It’s already illegal
/jk
patents*
Wait a minute! It should be illegal to sell their parents for sure! I’ve never sold my parents either!
Reminds me of solarwinds doing security seminars after getting breached lol
Don’t they have an easily hacked screenshot collecting bit of Bloat/Spyware they’re desperately trying to get everyone to use?
Sounds like something they should talk about in some kind of summit about security
