Crowdstrike processes their signature files in kernel mode. Defender helpfully pastes malware over system files. Ivanti has a new critical vulnerability every week or so. Why are security vendors incompetent?
You hear a lot about them because they are used in government and large enterprise environments when threat actors love to attack.
Having a responsible disclosure process where they announce problems so their customers know it’s patching time. It’s better then it use to be where a vendor threw out a patch and if you didn’t patch because the vendor didn’t say why the patch was released.
There’s a reason why Isolated Networks are big money these days. Everyone expects their shit connected to the internet will be hit eventually and anyone that thinks they are safe are probably already being hit.
Oh cool. Cool cool cool.
Crowdstrike processes their signature files in kernel mode. Defender helpfully pastes malware over system files. Ivanti has a new critical vulnerability every week or so. Why are security vendors incompetent?
Because all software is insecure.
You hear a lot about them because they are used in government and large enterprise environments when threat actors love to attack.
Having a responsible disclosure process where they announce problems so their customers know it’s patching time. It’s better then it use to be where a vendor threw out a patch and if you didn’t patch because the vendor didn’t say why the patch was released.
There’s a reason why Isolated Networks are big money these days. Everyone expects their shit connected to the internet will be hit eventually and anyone that thinks they are safe are probably already being hit.