Crowdstrike Outage and How to handle the issue.
Leading cybersecurity firm CrowdStrike encountered an issue due to a defect in one of its updates for computers running the Windows operating system.
On Friday morning, widespread IT outages occurred worldwide, resulting in thousands of flight cancellations and disruptions in internal and external systems across various industries such as hospitals, banks, stock exchanges, and other institutions. The failure of some Microsoft-based computers caused these outages.
CrowdStrike, an American cybersecurity technology firm providing cloud workload protection, threat intelligence, and cyberattack response services, stated that the outage was not due to a cyber attack; instead, it was caused by a software issue that has been identified and for which a fix has been deployed.
CrowdStrike CEO George Kurtz mentioned in an interview with CNBC that some systems can be fixed and back up and running immediately, while for others, it “could be hours, could be a bit longer” before everything is back up and running. He also noted that more than rebooting systems will be required for some customers to work through fixes.
Kurtz assured that CrowdStrike is actively collaborating with customers impacted by a defect found in a single content update for Windows hosts, while Mac and Linux hosts remain unaffected.
In a letter to customers and partners, Kurtz apologized for the outage, attributing it to “a defect found in a Falcon content update for Windows hosts.”
Kurtz also emphasized the importance of remaining vigilant, as adversaries and bad actors may attempt to exploit events like this, and encouraged everyone to engage only with official CrowdStrike representatives through the company’s blog and technical support channels for the latest updates.
As the incident gets resolved, Kurtz committed to providing full transparency on how it occurred and the steps being taken to prevent similar occurrences in the future.
Windows computers around the world are being hit by the dreaded Blue Screen of Death (BSOD). The issue has impacted everyone from banks to airlines, with flights grounded, grocery carts abandoned, and productivity even lower than usual for a Friday.
Fortunately, CrowdStrike has since announced at 2:30 a.m. ET that it has identified the update causing the issue and rolled it back. The company also offered a workaround for anyone having problems:
How to deal with the Blue Screen of Death.
- “Boot Windows into Safe Mode or the Windows Recovery Environment
- “Navigate to the C:\Windows\System32\drivers\CrowdStrike directory
- “Locate the file matching ‘C-0000029*.sys’, and delete it.
- “Boot the host normally.”
Of course, having to do this for every single computer in multiple companies across the globe is still likely to take some time.
“CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts,” CrowdStrike CEO George Kurtz said on X. “Mac and Linux hosts are not impacted.
This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed.”