christian_taillon (@christian_tail)
twiiit.com
You're correct. Full of zeros at least.

…according to a Twitter post by the Chief Informational Security Officer of Grand Canyon Education.

So, does anyone else find it odd that the file that caused everything CrowdStrike to freak out, C-00000291-
00000000-00000032.sys was 42KB of blank/null values, while the replacement file C-00000291-00000000-
00000.033.sys was 35KB and looked like a normal, if not obfuscated sys/.conf file?

Also, apparently CrowdStrike had at least 5 hours to work on the problem between the time it was discovered and the time it was fixed.

    • PythagreousTittiesEnglish
      324·
      2 months ago

      Windows kernel drivers are signed by Microsoft. They must have rubber stamped this for this to go through, though.

      Try to keep up.

      • witx@lemmy.sdf.orgEnglish
        32·
        2 months ago

        You look so kewl if I were a child again I’d speak just like you

        • PythagreousTittiesEnglish
          24·
          2 months ago

          Quoting the comment that started this thread is speaking like a child to you?