The July 2024 CrowdStrike update fiasco was likely due to a combination of software monoculture, poor QA, and lacking operational risk management.
bugs
Coordinated Vulnerability Disclosure – Europe Has Some Work to Do
Coordinated cybersecurity vulnerability disclosure (CVD) policies in Europe are unfortunately not universal; likewise, legislation to protect ethical hackers still has a way to go. The European Cybersecurity Agency (ENISA) could do more at an EU-wide level to help good faith researchers protect critical digital resources.