vx-underground

We thought like, maybe a big ransomware incident, or a data leak.

We didn't expect arguably one of the largest IT outages in history caused by arguably one of the largest cybersecurity companies in history.

¯\_(ツ)_/¯

😎122❤18🔥12🤣9😁8🤓4👍3🤯3😢1🎉1😘1

9.64K views14:53

0:19

Leaked footage of CrowdStrike's legal department this morning

🤣188😁10💯8😢1

13K views15:11

0:05

"We need you to come info the office and help us find all the BitLocker keys"

🤣147😁10❤8👍2❤‍🔥1😢1

11K views15:36

0:08

tfw your company doesn't use CrowdStrike

🤣131😁18❤14❤‍🔥4💯4🥰2

11.6K views15:51

0:06

CrowdStike PR trying to apologize to enraged IT nerds

🤣150😢37❤8😁8💯7😱5🎉3🔥2🤔1

12K views16:03

> get phone call
> answer phone
> "hey have you heard about a cyber security company called CrowdStrike?'
> "nope, never heard of her"
> hang up

Don't explain this to non-nerds. They won't understand it and they'll get scared.

🤣199👍8🤔7❤5❤‍🔥2😢2😁1🫡1

11.2K views18:40

Just saw KitKat bars and Duolingo making BSOD jokes.

Wtf CrowdStrike you've ruined everything and it's only getting worse

🤣146🔥13❤7😢6😁4🤓4🤔3🫡3💯2

10.4K views21:15

One of the nerds who popped MGM (a member of Scattered Spider) was arrested in the UK. He was 17.

We posted about it, shared the link, but everyone is still pissing on CrowdStrike so we'll talk about it on Monday or something.

😁94🫡26🤣16😢13👍6🥰3❤2🔥2😱1

10.5K views22:54

0:08

We're coming across more and more Threat Actors who are children – some as young as 14 years old.

🤔78🤣23😢21😁17❤9🤯7🔥3💯2

10.2K views02:40

We somehow missed a semi-undocumented CrowdStrike EDR disable* technique that was unveiled in 2022.

It requires administrative access. This makes it more difficult to perform in enterprise environments.

Jonas Lyk discovered the CrowdStrike minifilter did not catch NtCreateFile when the FILE_APPEND_DATA access mask was present. It was possible to open a CrowdStrike driver with FILE_APPEND_DATA and append an additional byte to the driver opened.

When rebooting the machine, the driver signature would not match and CrowdStrike would not load.

🤣108🔥11❤10🤓6😱5🫡3💯2😢1

9.96K viewsedited 14:23

We have deleted our post addressing the conspiracy theories about the CrowdStrike thing.

We were bombarded with comments and political fighting.

It's Saturday and we're not going to deal with this shit on our weekend. We'll let someone else do it.

🤣105💯19🫡17👍8🤓8❤6🤝3🎉2🥰1👏1😢1

9.09K views14:52

Logging into Xitter and seeing thousands upon thousands of people, who have never written a single line of code their entire life and can barely use a computer, giving their expert input into kernel-mode programming

🤣266😁16💯11👍8👏6😎5😢2🤓2🫡2❤1

15.6K views15:55

The Official Microsoft Blog

Today Microsoft reported that they believe the CrowdStrike bug has impacted roughly 8,500,000 computers.

https://blogs.microsoft.com/blog/2024/07/20/helping-our-customers-through-the-crowdstrike-outage/

Helping our customers through the CrowdStrike outage

On July 18, CrowdStrike, an independent cybersecurity company, released a software update that began impacting IT systems globally. Although this was not a Microsoft incident, given it impacts our ecosystem, we want to provide an update on the steps we’ve…

🤣98👏9🔥7🤔2😱2😢2❤1

10.6K views20:47

Today Microsoft reported that they believe the CrowdStrike bug has impacted roughly 8,500,000 computers. https://blogs.microsoft.com/blog/2024/07/20/helping-our-customers-through-the-crowdstrike-outage/

To put that into perspective: that is nearly x3 the amount of the entire Linux user baser.

Haha just kidding:) we just wanted to make a jab at Linux nerds because they keep spamming "THIS IS THE YEAR OF THE LINUX DESKTOP"

🤣96😇34😁22😢13🔥9🫡5🤓3👍2❤1

9.35K views20:51