You won’t find the incompetence in the software no matter what.
If you fail to assume that the software contains issues – if you fail to understand that your software is made by humans and humans make mistakes, not because they’re bad but because they’re human – and if you fail to implement mechanisms to feel gracefully with inevitable failures, THAT is the incompetence.
A lot of companies will get calls from the “provider” offering help with mitigation so that additional features can also be installed. This is a time to be extra weary.
Never attribute to maliciousness that which can be explained by incompetence.
That said, I’m sure the Crowdstrike CEO is currently on a phone call with three of their pet Congresscritters asking if they can get a $100M grant to harden their systems against Russia/China/NKorea/Antifa interference right now.
This is going to turn out it was a hack in several months right?
Won’t take that long, security researchers are already decompiling the update to see if it was malicious or incompetence.
This is going to be Solarwinds all over again I can just smell it.
You won’t find the incompetence in the software no matter what.
If you fail to assume that the software contains issues – if you fail to understand that your software is made by humans and humans make mistakes, not because they’re bad but because they’re human – and if you fail to implement mechanisms to feel gracefully with inevitable failures, THAT is the incompetence.
Failures are systemic.
Oh yes I make those failures myself, testing and staging and limited release schedules save my human failures from breaking the world
No idea why this relatively banal truth is getting so many downvotes
Hacks of this grade tend to be targeted, this is most likely incompetence.
A lot of companies will get calls from the “provider” offering help with mitigation so that additional features can also be installed. This is a time to be extra weary.
FYI, I think you mean “wary,” but this is one of those happy accidents where the wrong word also works in its own way.
I’ll just quietly leave this here: https://www.crowdstrike.com/blog/crowdstrike-google-cloud-expand-strategic-partnership/
Never attribute to maliciousness that which can be explained by incompetence.
That said, I’m sure the Crowdstrike CEO is currently on a phone call with three of their pet Congresscritters asking if they can get a $100M grant to harden their systems against Russia/China/NKorea/Antifa interference right now.