31

Wall Street Journal: Microsoft says it cannot wall off its OS due to a 2009 deal with the EC to give security software makers the same level of access to Windows that Microsoft gets  —  Global outage on Windows machines caused by CrowdStrike highlights Microsoft's security challenges

you are viewing a single comment's thread
view the rest of the comments
[-] JeeBaiChow@lemmy.world 6 points 3 months ago

Then make sure no auto updates without a sysadmins ok. Not rocket science.

[-] OppositeOfOxymoron@infosec.pub 7 points 3 months ago

The whole point to Endpoint Protection is to quickly and easily send updates to block currently exploited vulnerabilities to the systems most likely to be affected. Adding a delay for in-house QA testing (and the associated costs) doesn't make any sense.

[-] svieg@slrpnk.net 3 points 3 months ago

I think it's very unrealistic to expect all sysadmins to spot uninitialized memory access in all software they don't produce. This calls for independent software testing at scale which is more elaborate than just pushing the responsibility to sysadmins.

this post was submitted on 21 Jul 2024
31 points (100.0% liked)

Pulse of Truth

493 readers
108 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 1 year ago
MODERATORS