I always think it's easy for state actors to pull out this trick. Considering PR... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		hnthrowaway0328 on July 19, 2024 \| parent \| context \| favorite \| on: CrowdStrike Update: Windows Bluescreen and Boot Lo... I always think it's easy for state actors to pull out this trick. Considering PR review is usually done within the team. A state actor can simply insert a manager, a couple of senior developers and maybe a couple of junior developers into a large team to do the job. Push something in Friday so few people bother to check, gets approved by another implant and here you go. All people can then leave leisurely.

yard2010 on July 19, 2024 [–]

This happened with intelij a while back didn't it? A spy pushed a code that caused a suplly chain outage somewhere, I can't remember the details.

Anyway, I believe this is what happened here in this case.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact