[jsh42]

I doubt that the CrowdStrike debacle will (or should) move any regulatory needles, but I do know it should be an instant extinction event for CrowdStrike as a company--and any company that remains stupid enough to keep the CrowdStrike malware installed deserves the same fate.

[Edit:] I have no financial (or otherwise) interest in CrowdStrike or any related product or vendor. My point here is that by failing to practice the most fundamental QA in their release process, CrowdStrike directly caused a global IT infrastructure meltdown--which is, of course, what other product is supposed to prevent.

The "punishment" needs to be extinction. Only when that happens will other firms like this, along with the brain-dead lemmings who make most enterprise IT purchasing decisions, start acting responsibly.