Great post! You are spot on about the Linux exploits available. A simple visit to PacketStorm can be mindblowing for those that are unaware of your statement. Just look up the XZ backdoor exploit for a perfect example.

Been a UNIX and UNIX-like engineer for decades. Personally, I mainly use OpenBSD (and some FreeBSD) for general surfing and servers. Arch for Linux is my preference. Many also do not understand the amount of large corporate contributions to the Linux kernel. Kernel exploits are a "dime a dozen". BTW, although much larger and more complicated than it was 20 years ago, compiling your own Linux kernel is still a great thing to learn, not too difficult, and can teach you many things (plus it's just fun to do, lol)

That said reading this thread thus far indicates how poor the strong opinions are based on very poor knowledge and poor assumptions.

Correct. FUD will always be a very strong and controlling element. Knowledge is power!

interesting you would say this, without going into the matter of What this FALCON-SENSOR PROCESS is all about.

And guess what, desktops ain't running that Crowdstrike shit.

If you worry about it and you are running windooooz destop:

"C:\Program Files\CrowdStrike\CSSensorSettings.exe" –version

On linux:

sudo /opt/CrowdStrike/falconctl -g --version

or if you so which systemctl the fucker.

However, on linux, this is not shipped by default. You really would have to download it and install it.

So why is it a question regarding DEBIAN-style distro' s coming from RED HAT? Because, many if not most internet servers run a linux distro, and some people are running the crowsstrike FALCON-SENSOR shit.

goto: https://www.crowdstrike.de/produkte/faq/ copy past the answer in any translator. It is easy to see how this is not a single end-user product.

Falcon is a platform developed by CrowdStrike with the aim of stopping security incidents using cloud-based, unified technologies. All types of attacks - including malware. Today's highly sophisticated attackers are not only using more malware to harm organizations, but increasingly exploits, zero-day attacks and hard-to-detect methods such as identity theft and tools that are part of the victim's environment or operating system, such as PowerShell. CrowdStrike Falcon responds to these challenges with a powerful yet lightweight solution. It combines next-generation antivirus (NGAV), endpoint detection and response (EDR), managed threat hunting and security hygiene - all in a small, streamlined sensor that is managed and deployed in the cloud.

Translated with DeepL.com (free version)

So, before we get our panties in a twist over Linux being secure or not, or that windows is just a gaming pc, this fucker Crowdstrike has no direct relationship with the box you are running, lest you installed it yourself.

That said: in terms of "vulnerability", which means how to HURT a system, for most people, being the simple end user, barely knowing how to swipe right, ignorant of the intrinsic beauty of device communication, you can have a secure as FORT KNOX system, but in the end, it is human behavior that breaks everything, and it need not be a Mission Impossible at all.

There is something like: cost benefit ratio. So phising and clicking on links/ downloading and opening macro-enabled files, without certifying those is the biggest risk. Then comes porn.

So, the moral lesson of today: learn to code.