Quote:
Originally Posted by Lanny_McDonald
This could have been much worse than it was. This could have been another Solarwinds incident where the vendor was leveraged as a distribution point for a zero day attack that either cryptoed/encrypted or damaged systems. Fortunately it was just a bad update with an easy fix. Time consuming, yes, but really no significant damage to systems and infrastructure.
|
Solarwinds was estimated to be 90 to 100$ million in overall financial damage when accounting for reputation, litigation and all fallout, and mainly targeted and limited to government agencies. There was no ransomware or any such attack relating to the Solarwinds hack seen and impact was largely limited to exposed data via the vulnerability. It's not even known if any data was actually stolen, just that the malware existed and it is likely.
This one is already estimated to be over 1 billion dollars and counting upwards. We are operational but is still impacted as other vendors we use are not 100% with all hands on deck to get every back and it may take weeks.
Ironically, the Solarwinds incident was a huge bone thrown to Crowdstrike as companies attempted to harden their environment and aggravated the current situation. It also shows just how vulnerable the world is should a malicious attack or vulnerable file get delivered via Crowdstrike Falcon for example, further raising the threat of supply chain attacks. If CrowdStrike's change management is so poor that it allowed such a broken file to make it to production at the kernel level, there is no reason to trust they have done due diligence on ensuring no malware is present and preventing a Solarwinds style attack. The trust is gone.
CrowdStrike Annual Revenue (Millions of US $)
2023 $2,241
2022 $1,452
2021 $874
2020 $481
Speaking of Solarwinds, the court just threw out most of the SEC case against Solarwinds, limiting the scope to financial.
https://www.washingtonpost.com/techn...k-disclosures/