CrowdStrike update causes global IT outage
NEW YORK, UNITED STATES — A faulty software update from cybersecurity firm CrowdStrike has caused widespread IT disruptions, affecting businesses and organizations worldwide.
The incident has resulted in thousands of Windows machines experiencing the dreaded Blue Screen of Death (BSOD), impacting critical sectors, including banks, airlines, TV broadcasters, supermarkets, and more.
This issue has forced affected PCs and servers into a recovery boot loop, preventing them from starting properly.
Initial impact in Australia and Europe
The problem was first raised in Australia, where banks, airlines, and TV broadcasters reported a surge in offline devices.
As the workday began in Europe, the issue quickly spread. UK broadcaster Sky News was unable to air its morning news bulletins for hours, while Ryanair, one of Europe’s largest airlines, faced significant delays in flight departures due to the IT glitch.
Critical services affected: From 911 to retail
In the United States, the Federal Aviation Administration (FAA) is assisting airlines like Delta, United, and American Airlines, which have requested help with ground stops for their fleets.
FAA spokesperson Jeannie Shiffer stated, “The FAA is closely monitoring a technical issue impacting IT systems at U.S. airlines.”
Berlin airport also warned of travel delays due to technical issues, and in India, an airline resorted to issuing handwritten boarding passes.
The outage has also impacted 911 emergency call centers, causing significant disruptions. Retailers and supermarkets worldwide have reported issues processing payments, adding to the chaos.
CrowdStrike’s response and remediation efforts
CrowdStrike CEO George Kurtz addressed the situation, stating, “CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts. This is not a security incident or cyberattack.”
The company has identified the issue as stemming from an update to the kernel-level driver used to secure Windows machines. Although CrowdStrike has reverted the faulty update, the machines already affected remain problematic.
CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts. Mac and Linux hosts are not impacted. This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed. We…
— George Kurtz (@George_Kurtz) July 19, 2024
Challenges for IT administrators
Tech companies like Dell Technologies, HCLTech, and Wipro have previously partnered with Crowdstrike to boost their cybersecurity capabilities, underscoring a critical risk to the IT and outsourcing sectors.
IT administrators face significant challenges in resolving the issue. Workarounds involve booting affected Windows machines into safe mode and deleting a specific system file from the CrowdStrike directory, a process complicated for cloud-based servers and remote laptops.
The global IT outage caused by CrowdStrike’s faulty update serves as a stark reminder of the vulnerabilities in our interconnected digital infrastructure. As businesses and IT professionals work tirelessly to restore normalcy, the incident underscores the critical need for robust and resilient IT management practices.
