CrowdStrike cooked SkyNews. They're trying to do the news with no computers.

CrowdStrike cooked airports in India. They're issuing handwritten boarding passes

We apologize to the many people who follow us online.

Instead of doing our regular malware sample family updates and pushing new papers, we're going to meme this CrowdStrike thing until we develop arthritis.

Stock exchange opened. It appears CrowdStrike share holders are relatively concerned.

The office printer seeing the IT Team trying to print thousands of BitLocker keys

The IT team when they realize they're out of ink and need to handwrite them

In all seriousness, we offer our most sincere condolences to our friends and colleagues who work at CrowdStrike.

We're sorry we're memeing so hard — but the situation is so unbelievably bad it's borderline satire.

We thought like, maybe a big ransomware incident, or a data leak.

We didn't expect arguably one of the largest IT outages in history caused by arguably one of the largest cybersecurity companies in history.

¯\_(ツ)_/¯

Leaked footage of CrowdStrike's legal department this morning

"We need you to come info the office and help us find all the BitLocker keys"

tfw your company doesn't use CrowdStrike

CrowdStike PR trying to apologize to enraged IT nerds

> get phone call
> answer phone
> "hey have you heard about a cyber security company called CrowdStrike?'
> "nope, never heard of her"
> hang up

Don't explain this to non-nerds. They won't understand it and they'll get scared.

Just saw KitKat bars and Duolingo making BSOD jokes.

Wtf CrowdStrike you've ruined everything and it's only getting worse

One of the nerds who popped MGM (a member of Scattered Spider) was arrested in the UK. He was 17.

We posted about it, shared the link, but everyone is still pissing on CrowdStrike so we'll talk about it on Monday or something.

We're coming across more and more Threat Actors who are children – some as young as 14 years old.

We somehow missed a semi-undocumented CrowdStrike EDR disable* technique that was unveiled in 2022.

It requires administrative access. This makes it more difficult to perform in enterprise environments.

Jonas Lyk discovered the CrowdStrike minifilter did not catch NtCreateFile when the FILE_APPEND_DATA access mask was present. It was possible to open a CrowdStrike driver with FILE_APPEND_DATA and append an additional byte to the driver opened.

When rebooting the machine, the driver signature would not match and CrowdStrike would not load.

We have deleted our post addressing the conspiracy theories about the CrowdStrike thing.

We were bombarded with comments and political fighting.

It's Saturday and we're not going to deal with this shit on our weekend. We'll let someone else do it.

Logging into Xitter and seeing thousands upon thousands of people, who have never written a single line of code their entire life and can barely use a computer, giving their expert input into kernel-mode programming