Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://cyberplace.social/users/GossiTheDog/statuses/112900184131166179">Kevin Beaumont (gossithedog@cyberplace.social)'s status on Sunday, 04-Aug-2024 06:22:23 JST</a><a href="https://cyberplace.social/@GossiTheDog" title="gossithedog@cyberplace.social"><img src="https://gnusocial.jp/avatar/38360-48-20240926225417.webp" width="48" height="48" alt="Kevin Beaumont" style="position: absolute; left: 0; top: 0;">Kevin Beaumont</a><div><a href="https://cyberplace.social/@GossiTheDog/112896747922180172" rel="in-reply-to">in reply to</a></div></section><article><p>Previously on Crowdstrike Falcon vulnerability research, check out this timeline where they tried to use NDAs to avoid disclosure, then fixed it without telling anybody.  <a href="https://modzero.com/modlog/archives/2022/08/22/ridiculous_vulnerability_disclosure_process_with_crowdstrike_falcon_sensor/index.html" rel="nofollow noreferrer">https://modzero.com/modlog/archives/2022/08/22/ridiculous_vulnerability_disclosure_process_with_crowdstrike_falcon_sensor/index.html</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/3423990#notice-6823165">In conversation</a><time datetime="2024-08-04T06:22:23+09:00" title="Sunday, 04-Aug-2024 06:22:23 JST">about 4 months ago</time> <span>from <span><a href="https://cyberplace.social/@GossiTheDog/112900184131166179" rel="external" title="Sent from cyberplace.social via ActivityPub">cyberplace.social</a></span></span><a href="https://cyberplace.social/@GossiTheDog/112900184131166179">permalink</a><h4>Attachments</h4><ol><li><article><header><div>No result found on File_thumbnail lookup.</div><h5><a href="https://modzero.com/modlog/archives/2022/08/22/ridiculous_vulnerability_disclosure_process_with_crowdstrike_falcon_sensor/index.html">Ridiculous vulnerability disclosure process with CrowdStrike Falcon Sensor | mod%log</a></h5><div></div></header><div>We found a security related issue in most recent CrowdStrike Falcon Sensor. The bug itself is not worth a blogpost, as the severity is pretty low. However, we'd like to shed some light on a vulnerability submission and disclosure process with CrowdStrike: It was pretty weird.</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Kevin Beaumont (gossithedog@cyberplace.social)'s status on Sunday, 04-Aug-2024 06:22:23 JST Kevin Beaumont
in reply to
Previously on Crowdstrike Falcon vulnerability research, check out this timeline where they tried to use NDAs to avoid disclosure, then fixed it without telling anybody. https://modzero.com/modlog/archives/2022/08/22/ridiculous_vulnerability_disclosure_process_with_crowdstrike_falcon_sensor/index.html
In conversationabout 4 months ago from cyberplace.socialpermalink
Attachments
1. No result found on File_thumbnail lookup.
  Ridiculous vulnerability disclosure process with CrowdStrike Falcon Sensor | mod%log
  We found a security related issue in most recent CrowdStrike Falcon Sensor. The bug itself is not worth a blogpost, as the severity is pretty low. However, we'd like to shed some light on a vulnerability submission and disclosure process with CrowdStrike: It was pretty weird.

Public

Embed Notice

HTML Code

Corresponding Notice