September 11, 2024 at 11:24AM Datricks, a compliance and risk management startup, has secured $15 million in Series A funding led by Team8’s venture capital arm, with additional investments from SAP and Jerusalem Venture Partners. The Tel Aviv-based startup, founded in 2019, offers an AI-based platform for financial risk detection, which has already prevented significant … Read more
August 23, 2024 at 08:03AM Some CrowdStrike customers experienced degraded performance due to a cloud service issue, causing disruptions and concern over potential serious problems. However, the issue only affected some services and a limited number of customers. CrowdStrike quickly addressed the problem, confirmed the cause, and assured customers that performance was returning to normal. … Read more
August 12, 2024 at 06:23PM CrowdStrike announced the root cause of the Falcon EDR sensor crash, attributing it to multiple factors, including a content validation mismatch and an out-of-bounds reach issue. Following a public apology from the company’s CTO and president, CrowdStrike outlined steps to prevent future incidents, including engaging software security vendors for code … Read more
August 6, 2024 at 08:23PM CrowdStrike has hired two outside security firms to review the Falcon sensor code after a global IT outage. The incident was caused by a simple mistake in an update to detect novel attack techniques on Windows machines. CrowdStrike has implemented fixes and is conducting more tests to prevent similar issues … Read more
August 6, 2024 at 02:06PM CrowdStrike released a root cause analysis explaining a software update crash that affected Windows systems globally. The mishap was attributed to security vulnerabilities and process gaps, resulting in a system crash. CrowdStrike outlined the technical issues and pledged to collaborate with Microsoft for more secure access to the Windows kernel. … Read more
July 24, 2024 at 10:24AM CrowdStrike released a Preliminary Post Incident Review explaining that a faulty Falcon update caused millions of Windows systems to crash due to a bug in the Content Validator. The issue stemmed from a problematic content configuration meant to gather telemetry on new threat techniques. CrowdStrike acknowledged inadequate testing and is … Read more
July 24, 2024 at 01:22AM CrowdStrike attributed last week’s mass crash to a bug in its own test software, Falcon Sensor. The incident report detailed the use of “Template Instances” to detect threats, and how a bug in the Content Validator resulted in a “dud” release, leading to a Windows OS crash on around 8.5 … Read more
April 26, 2024 at 04:44PM Intel’s Hack@DAC competition, initiated in 2017, engages security engineers globally to uncover hardware vulnerabilities, develop mitigation solutions, and analyze root causes. The event aims to raise awareness about hardware-based vulnerabilities and the need for increased detection tools. Intel is now accepting entries for the 2024 Hack@DAC event and has collaborated … Read more
April 1, 2024 at 04:48PM Veracode has acquired Longbow Security, a startup focused on automating root cause analysis of security vulnerabilities, with financial details undisclosed. Veracode plans to use Longbow’s technology to assist security teams in rapidly discovering cloud and application assets, assessing threat exposure, and automating issue investigation and remediation. The acquisition aims to … Read more
March 1, 2024 at 06:15AM The text discusses the concept of “blameless” postmortems in tech companies and provides detailed examples of such postmortems from GitLab, Tarsnap, Roblox, and Cloudflare. These case studies uncover the root causes of outages, the impact of the incidents, and the lessons learned in data security and continuity planning. The examples … Read more