From Dave’s Garage.

Dave explains the Crowdstrike IT outage, focusing in on its role as a kernel mode driver. For my book on the spectrum, see: https://amzn.to/3XLJ8kY

Get the shirt: https://amzn.to/4bRUgAn

Follow me for updates!
Twitter: @davepl1968 davepl1968
Facebook: fb.com/davepl

Opinions are mine only, not a spokesperson!

I should add that I don’t know if the channel definition update files were privately signed or not; what I meant is that I presume they do not go through the WHQL signing process. But even if they do, we’ve learned that trusting their content (which was all zeros in this case) didn’t go well.