Please Share 🤝

Highlights

Massive global IT outage impacted multiple sectors.
CrowdStrike and Microsoft clarified it’s not a cyberattack but a software issue.
The incident highlights risks of reliance on interconnected tech companies.

One of the most significant IT outages occurred early Friday i.e. CrowdStrike-Microsoft Outage, impacting various sectors such as financial services, public transport, aviation, corporates, media broadcasting, and hospitality. This global IT disruption has raised questions about its cause, Microsoft’s involvement, and the future implications.

Was This a Cyberattack?

“This is not a security incident or cyberattack,” clarified CrowdStrike CEO George Kurtz. A defect in a single content update for Microsoft Windows hosts caused the outage. CrowdStrike identified the issue on its support page, pointing to its “Falcon Sensor” software as the root cause. The problem stemmed from a negative interaction between a software update and Microsoft’s operating system, causing widespread system crashes.

Today was not a security or cyber incident. Our customers remain fully protected.

We understand the gravity of the situation and are deeply sorry for the inconvenience and disruption. We are working with all impacted customers to ensure that systems are back up and they can…
— George Kurtz (@George_Kurtz) July 19, 2024

George Kurtz on X: “Today was not a security or cyber incident. Our customers remain fully protected. We understand the gravity of the situation and are deeply sorry for the inconvenience and disruption. We are working with all impacted customers to ensure that systems are back up and they can” / X

Microsoft vs. FTC: Xbox Game Pass Price Hike Controversy

July 20, 2024 No Comments

Microsoft defends Xbox Game Pass price hikes amid FTC criticism. Learn about the controversy over…

Microsoft Revamps Xbox Game Pass with Major Changes

July 10, 2024 No Comments

Microsoft announces Xbox Game Pass changes: price hikes, phasing out Console tier, and introducing a…

How Did the Outage Happen?

The outage was linked to Microsoft’s Azure cloud platform and an issue with CrowdStrike’s Falcon Sensor software. This software defect led to system crashes and the infamous “blue screen of death” (BSoD) for many Windows users. The incident required manual fixes, making it a prolonged process.

What is CrowdStrike?

CrowdStrike is a cybersecurity firm providing cloud-based security solutions. Its Falcon tool, designed to detect unusual behavior and vulnerabilities, was central to the outage. Founded in 2011 and based in Austin, Texas, CrowdStrike operates in over 170 countries and employs more than 7,900 people.

Microsoft’s Role in the Outage

The recent update to CrowdStrike’s Falcon Sensor software caused issues with Microsoft Windows 365 Cloud PCs. The update led to system crashes and the “blue screen of death.” Microsoft has since fixed the underlying cause, but residual impacts continue to affect some services.

We're aware of an issue with Windows 365 Cloud PCs caused by a recent update to CrowdStrike Falcon Sensor software. This is being communicated under WP821561 in the admin center. (Cont…)
— Microsoft 365 Status (@MSFT365Status) July 19, 2024

Microsoft 365 Status on X: “We’re aware of an issue with Windows 365 Cloud PCs caused by a recent update to CrowdStrike Falcon Sensor software. This is being communicated under WP821561 in the admin center. (Cont…)” / X

What is the ‘Blue Screen of Death’?

The “blue screen of death” (BSoD) is a critical error screen displayed by Windows operating systems following a system crash. Social media was flooded with memes about the BSoD as many users experienced crashes during the outage.

Holiday mood on by Microsoft 😊
Blue screen of death reported at multiple companies – Crowd Strike attack

Are you also facing ??

Guys it's a global issue from Microsoft #Bluescreen #Microsoft pic.twitter.com/lf2LAHmVFf
— Saurabh kumar (@Saurabhk0096) July 19, 2024

Saurabh kumar on X: “Holiday mood on by Microsoft 😊 Blue screen of death reported at multiple companies – Crowd Strike attack Are you also facing ?? Guys it’s a global issue from Microsoft #Bluescreen #Microsoft https://t.co/lf2LAHmVFf” / X

How to Fix the Blue Screen Error?

To resolve the blue screen error:

Boot into Safe Mode or Windows Recovery Environment.
Navigate to C:\Windows\System32\drivers\CrowdStrike.
Locate and delete the file named “C-00000291*.sys”.
Reboot your system normally.

What is the ‘Blue Screen of Death’?

When Will the Outage Be Fully Resolved?

Fixing the outage will take time due to the need for manual updates on affected systems. CyberArk’s CIO, Omer Grossman, noted that resolving the issue on endpoint devices individually will be a prolonged process.

The Indian Government’s Response

Ashwini Vaishnaw, India’s Minister for Information & Broadcasting, confirmed that the government is in contact with Microsoft and its associates regarding the outage. The Indian Computer Emergency Response Team (CERT) issued a technical advisory, and the National Informatics Centre (NIC) reported no impact on its network.

Is This the Largest IT Outage in History?

Cybersecurity researcher Troy Hunt suggested this could be the largest IT outage in history. The ongoing disruption underscores the risks of relying heavily on a few interconnected technology companies. The outage affected multiple sectors, highlighting the vulnerabilities in the increasingly online world.

They also usually operate in what we'd call a "privileged" space on your machine, that is they have very broad-reaching control in order to detect and mitigate risks. That also means that if something goes wrong with an update, it's able to catastrophically nuke your machine.
— Troy Hunt (@troyhunt) July 19, 2024

Troy Hunt on X: “They also usually operate in what we’d call a “privileged” space on your machine, that is they have very broad-reaching control in order to detect and mitigate risks. That also means that if something goes wrong with an update, it’s able to catastrophically nuke your machine.” / X

Impact of the Outage on Services

Financial Sector: The outage disrupted stock trading platforms and banking operations globally, with minor disruptions reported by India’s RBI.

Aviation: Airlines faced delays and cancellations, with manual check-ins and flight halts. IndiGo canceled over 200 flights.

Health Systems: Procedures were canceled, and handwritten records were used, particularly affecting England’s NHS.

Media: Broadcasting services like Britain’s Sky News and Australia’s ABC experienced significant disruptions.

Conclusion

The CrowdStrike-Microsoft outage is a stark reminder of the complexities and risks associated with modern interconnected IT infrastructures. As the affected sectors work towards recovery, the incident underscores the need for robust contingency plans and resilient systems to mitigate the impact of such widespread disruptions in the future.