Bugs as Weapons – Lessons from the CrowdStrike Outage
CrowdStrike’s recent outage highlighted significant vulnerabilities in our digital infrastructure. Here’s why we need real consequences to ensure this never happens again.
My Take:
It has been a bad 11 days for CrowdStrike. The trouble is, a bad 11 days for CrowdStrike is a bad 11 days for everybody.
Whether you were trying to board an airplane or use public transport, bank online, access emergency services, or even just watch TV, people everywhere had their work and lives upended by what was likely the largest IT outage in history.
There has been a fair amount of post-mortem analysis of how we got to here. The prevailing take is that there was a logic flaw in Falcon sensor version 7.11 and above, resulting in its crash. The postmortem is essential — but looking at the past doesn’t mean jack if we’re not carrying those lessons into the future.
This has to be a wake-up call. Bugs, errors, and omissions like this turn into weapons faster than you can imagine. We just helped our adversaries learn a little bit more about how to take down our electric grid. One lousy engineer should not be able to sow chaos at this scale.
Two key things need to happen next.
ENFORCEMENT: Cyber Command needs to step up and take a more muscular approach. It’s not just about monitoring for cybersecurity; they need to ensure it. This is not a regulatory imperative -- it’s a national security imperative. After the 2008 collapse, Treasury was deputized to conduct stress tests on banks. I think it’s time that Cyber Command and related federal agencies be granted the oversight and authority to conduct cyber stress tests for companies like CrowdStrike.
CONSEQUENCES: When bank executives don’t pass Treasury’s stress tests, they get fined. When CrowdStrike deletes hundreds of billions of dollars of market value, we shrug our shoulders. This is a case of what economists call “moral hazard.” It’s a dangerous precedent if the entire world can be interrupted and a company’s only concern is that they’ll be dragged in front of some angry senators and have their hand slapped. There need to be real consequences that incentivize everybody to do better.
It could’ve been worse. It could’ve been nefarious. Collectively we need to take steps to ensure it doesn't happen again.
MORE ON THIS TOPIC:
Delta hires David Boies to seek damages from CrowdStrike, Microsoft after outage
Shares of CrowdStrike plummeted an additional 12.5% following the news that Delta is coming for them
Photos of your children are being used to train AI without your permission, and there’s nothing you can do about it 📸🧒🤖🔍
Many of the images that were scraped weren’t publicly available on the internet but were hidden behind privacy settings on popular social media sites. In other words, some parents who thought they were doing everything right in sharing images of their kids are about to find out just how wrong they were.
Meta agrees to $1.4 billion settlement in Texas biometric data lawsuit over Facebook images 💰🧬👁️🗨️🖐️
“Unbeknownst to most Texans, for more than a decade Meta ran facial recognition software on virtually every face contained in the photographs uploaded to Facebook, capturing records of the facial geometry of the people depicted,” Texas AG Ken Paxton’s office said.
More Than 100 Silicon Valley Investors Pledge to Support Kamala Harris 💸🤝💼🇺🇸
The moves are perhaps the most public pushback to right-wing venture capitalists and executives whom some tech leaders see as dominating political conversation in the tech community. For years, Silicon Valley was largely considered a liberal bastion. But over the past few weeks, Elon Musk, who leads Tesla, SpaceX and X, and the investors Marc Andreessen, Ben Horowitz and David Sacks have endorsed former President Donald J. Trump, the Republican nominee.
How the Music Industry Learned to Love Piracy
The story they want to tell, in an emphatically triumphalist tone, is that the early pirates were David and the music industry was Goliath. But then the industry realized that David was actually pretty cool: All turned out well, and music was solved forever… this is an obviously insane interpretation of events. The problem isn’t just the ever-decreasing viability of even established, popular artists keeping food on the table. There is also a cultural poverty that attends the streaming economy. There is the ruthless profit maximization and the constant steering of listeners toward the same music.
Come work with me!
Apply to super{set} VECTOR
A 12-week fully-paid launchpad for technical product leaders to receive direction, build magnitude, and co-explore company creation alongside super{set} - Apply at superset.com/vector