this post was submitted on 16 Apr 2026
703 points (99.4% liked)

Programmer Humor

31019 readers
1190 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 2 years ago
MODERATORS
Feyter@programming.dev
anzo@programming.dev
BurningTurtle@programming.dev
pylapp@programming.dev
703
another windows zeroday, the repo text is hilarious (lemmy.blahaj.zone)
submitted 3 days ago by not_IO@lemmy.blahaj.zone to c/programmer_humor@programming.dev
36 comments fedilink hide all child comments
 

https://github.com/Nightmare-Eclipse/RedSun

you are viewing a single comment's thread
view the rest of the comments
[–] CompactFlax@discuss.tchncs.de 118 points 3 days ago (5 children)

Oh cool. Cool cool cool.

Crowdstrike processes their signature files in kernel mode. Defender helpfully pastes malware over system files. Ivanti has a new critical vulnerability every week or so. Why are security vendors incompetent?

[–] Shameless@lemmy.world 55 points 3 days ago

Because they know they have such a chokehold on the market. I remember back in the XP days it felt like every year there was a new top tier security product that people were trying.

[–] slazer2au@lemmy.world 32 points 3 days ago (1 children)

Because all software is insecure.

You hear a lot about them because they are used in government and large enterprise environments when threat actors love to attack.
Having a responsible disclosure process where they announce problems so their customers know it's patching time. It's better then it use to be where a vendor threw out a patch and if you didn't patch because the vendor didn't say why the patch was released.

[–] tidderuuf@lemmy.world 23 points 3 days ago (1 children)

There's a reason why Isolated Networks are big money these days. Everyone expects their shit connected to the internet will be hit eventually and anyone that thinks they are safe are probably already being hit.

[–] luciferofastora@feddit.org 3 points 3 days ago (1 children)

anyone that thinks they are safe are probably already being hit.

Is that the IT Sec version of "If you think you're never wrong, you already are"?

[–] tidderuuf@lemmy.world 3 points 3 days ago

I probably should have used the analogy my VD doctor gave me, "If you keep dippin your tip even with the best of protection on you'll eventually find a walking biohazard that even I can't bring you back from."

[–] BarbecueCowboy@lemmy.dbzer0.com 11 points 3 days ago

Some of it is incompetence, but some is... more complicated incompetence. A lot of the weirdness you see is where some executive somewhere had a problem that affected him and had enough money/clout to throw around that they could make whatever just happen. Microsoft is the worst at this.

[–] lightnsfw@reddthat.com 6 points 3 days ago (1 children)

Gotta let some shit happen or people won't think they're doing anything.

[–] otter@lemmy.dbzer0.com 4 points 3 days ago

Can't exactly let your hard work go unrecognized by the shareholders now, can ya?

[–] Brkdncr@lemmy.world 4 points 3 days ago

Crowdstrike has an impressive marketing budget.

BlackBerry cylance was a better product in every aspect but BB didn’t try to market it after aquiring it.