CrowdStrike and Microsoft: all the latest news on the global IT outage
See all Stories
R
Microsoft releases a technical dive into the CrowdStrike outage.
Along with CrowdStrike’s post incident review, this has Microsoft telemetry data and some explanations (performance, tamper resistance) for the kernel driver architecture that crashed millions of Windows systems.
Microsoft has called for locking down that access, and this post again brings up alternate options:
...security vendors can use minimal sensors that run in kernel mode for data collection and enforcement limiting exposure to availability issues. The remainder of the key product functionality includes managing updates, parsing content, and other operations can occur isolated within user mode where recoverability is possible.
Windows Security best practices for integrating and managing security tools
[Microsoft Security Blog]
Follow topics and authors from this story to see more like this in your personalized homepage feed and to receive email updates.
Loading comments
Getting the conversation ready...
Most Popular
Most Popular
- Our long national sunscreen nightmare is almost over
- Kaleidescape’s movie player blows streaming, and your wallet, away
- Barret Zoph is out at OpenAI again after just five months
- Hue’s wired wall modules bring non-smart lights into its ecosystem
- Midjourney goes from generating cat images to full-body ultrasound scans
