FalconCrowdStrike: Global Company Shutdown Investigation
HTML-код
- Опубликовано: 7 сен 2024
- In this video, we investigate the global shutdown caused by a bug in FalconCrowdStrike due to a bad file. Stay tuned for the full story!
The content is a channel file located in the %WINDIR%\System32\drivers\CrowdStrike directory.
Per CrowdStrike, Channel file “C-00000291*.sys” with timestamp of 2024-07-19 0527 UTC or later is the reverted (good) version.
Channel file “C-00000291*.sys” with timestamp of 2024-07-19 0409 UTC is the problematic version.
Note: It is normal for multiple “C-00000291*.sys files to be present in the CrowdStrike directory - as long as one of the files in the folder has a timestamp of 05:27 UTC or later, that will be the active content.
#Divteck101 #BlackMantel #
If you liked this video, please like and subscribe.
_______________________________________
For business owners needing an IT Consultant to help them with a project, click the link and check us out.
www.diventiont...
_______________________________________
Podcast: Are you interested in checking out some audio for your commute? Checkout out episodes on the new podcast BLACK MANTEL .anchor.fm/blac...
_______________________________________
Let’s connect on social media:
Website: www.diventiont...
Instagram: / divention_tech
Podcast: apple.co/3FE2XAj