The worldwide outage caused by a faulty update in Crowdstrike took many by surprise. It really should not have.

Considering the matter of authentication factors, 2FA, and applicability of popular approaches in high-security environments.

Log4Shell was a zero-day vulnerability of significant impact. Let’s try to recall the facts and figure out what factors may be resulting in such vulnerabilities coming into existence.