AppleZulu said:
So this is where we see letting third-party vendors have that level of access to the OS in order to provide security becomes a vulnerability in itself.These issues can affect first party vendors in exactly the same way.
If your systems permeate the fabric of the internet (in the deployment sense), the scope for trouble is there but everyone (first or third party) should have resilience designed into their systems.
Crowdstrike says this is the result of a botched update as opposed to a security or cyber attack situation but having it propagate so far and so quickly has to be looked at and resolved.
Any vendor could be hit by botched processes so that includes Apple, Meta, Google, Microsoft, Amazon Huawei etc in the deployment sense and the likes of Cloudfare in an infrastructure sense.
I suppose using a third party solution might even be favorable in some situations.
Luckily, these situations don't usually hit the headlines very often but some might ask 'how much of that is literally down to 'luck' itself?