@marcan the amount of enterprise software that does this - especially locally installed subscription-licensed software - is actually incredible. not all of it is as invasive as your crowdstrikes and beyondtrusts but damn near all of it is mission-critical in some way, shape or form, and has absolutely zero respect for the customer's change management process or the fact that the customer's machines are not in fact theirs to do with as they please. a customer of ours was unable to let me complete an upgrade of our software on their server as their pci dss compliance malware could not be disabled once installed without nuking it off the host machine (which due to how invasive it is, involves reimaging the machine entirely)

our helpdesk was able to continue operating uninterrupted all of this afternoon and evening because we simply do not install software on our production machines that does not respect our ownership of said machines (apart from windows server itself as the itsm tool we use is an asp dot net thing)