What is eBPF code, and how it will prevent the next Crowdstrike Kernal Event

July 24, 2024Source: brendangregg.com

Found this useful? Share it with your network

The article discusses the importance of eBPF (Extended Berkeley Packet Filter) in preventing catastrophic system crashes caused by problematic software updates, especially those involving kernel code. It follows an incident on July 19th, where a widespread Windows outage affected critical sectors worldwide due to a faulty kernel driver update by a security company. The article highlights how eBPF provides a secure execution environment that mitigates such risks by verifying code before execution, thus preventing system crashes. With Linux systems already leveraging eBPF, upcoming support for Windows is expected to extend these benefits across platforms. The article urges companies to require eBPF-based solutions to enhance system security and reliability.

Read Full Article

Opens on brendangregg.com

More News

AMA Asking For Stronger Safeguards on AI Mental Health Chatbots

April 29, 2026MobiHealthNews

Andrea Daugherty Appointed Chief Information and Digital Transformation Officer at ARMC

April 24, 2026arrowheadregional.org

Craig Richardville Appointed Chief Digital and Information Officer at UF Health

April 13, 2026ufhealth.org

Former AMA Exec Margaret Lozovatsky Named CDIO At Premier Health

April 10, 2026premierhealth.com

Signature Healthcare Diverts Ambulances Following Cybersecurity Incident

April 8, 2026SecurityWeek

More Than 100 Hospitals Suing HHS Over Alleged Underpayment

April 6, 2026MedCity News