cancel
Showing results for 
Search instead for 
Did you mean: 

CrowdStrike

Roger_Gooner
Alessandro Volta

Has VM been affected by the CrowdStrike bug? It has hit Windows devices in lots of businesses worldwide. Interestingly, if you are wondering why systems as diverse as airline check-in and payments are affected, the reason is probably because in the background there is communication with a Windows PC which has gone down, so the whole system fails. A chain is only as strong as its weakest link.

--
Hub 5, TP-Link TL-SG108S 8-port gigabit switch, 360
My Broadband Ping - Roger's VM hub 5 broadband connection
16 REPLIES 16

Adduxi
Very Insightful Person
Very Insightful Person

That's a bit of a lame advertisement for Windows Defender.  I would still be blaming Cloudstrike for not testing patches before sending out.  Anyway, lets see how many Corporates think about using Cloudstrike in the future?

I'm a Very Insightful Person, I'm here to share knowledge, I don't work for Virgin Media. Learn more

Have I helped? Click Mark as Helpful Answer or use Kudos to say thanks

goslow
Alessandro Volta

It's a bit rich of Microsoft piling in with that when MS routinely trashes computers every month, and in all manner of ways, with inadequately tested Windows updates.

Adduxi
Very Insightful Person
Very Insightful Person

In fairness, I've a few Win 10 / 11 Pro machines here and I honestly can't remember the last time WU "trashed" any of them.  However, I run quite "clean" machines and don't install stuff willy nilly.  

I'm a Very Insightful Person, I'm here to share knowledge, I don't work for Virgin Media. Learn more

Have I helped? Click Mark as Helpful Answer or use Kudos to say thanks

One thing that's been underreported was what had to be done where virtual machines are hosted on a cloud provider like Microsoft Azure. These VMs on Azure have no console access (as is common), so you can't boot them into safe mode by constantly whacking the F8 key.  Instead each VM had to be shut down, a replacement VM had to be created, the system disk from the affected VM had to be mounted to the new VM, delete the buggy file, unmount and start the new VM. Then repeat for the load of other affected VMs as the company had outsourced to a cloud provider.

--
Hub 5, TP-Link TL-SG108S 8-port gigabit switch, 360
My Broadband Ping - Roger's VM hub 5 broadband connection

Nightly VM snapshots would be a good idea.

Adduxi
Very Insightful Person
Very Insightful Person

That's quite a common thing to do in large Corporates.  In fact I still take regular Veeam backups of all my own hardware.  😉

I'm a Very Insightful Person, I'm here to share knowledge, I don't work for Virgin Media. Learn more

Have I helped? Click Mark as Helpful Answer or use Kudos to say thanks

Roger_Gooner
Alessandro Volta

My understanding is that for Azure, and I'm sure for other cloud providers, it's simple to create and manage snapshots of your VM's OS disk for recovery. The whole thing can be automated with scripts.

--
Hub 5, TP-Link TL-SG108S 8-port gigabit switch, 360
My Broadband Ping - Roger's VM hub 5 broadband connection