Faulty Microsoft cybersecurity update takes out banks, airlines and other major companies worldwide

A massive Microsoft Windows BSOD (blue screen of death) outage has impacted multiple companies worldwide including airlines, broadcasters and others. The problem was a caused by a faulty update from security giant CrowdStrike that forced PCs and servers into an unrecoverable boot loop. The change has since been rolled back, but many machines are still affected. "We have widespread reports of BSODs on windows hosts, occurring on multiple sensor versions," CrowdStrike wrote in a pinned Reddit post. "[We have] identified a content deployment related to this issue and reverted those changes." The company went on to describe a workaround, which involves booting Windows into Safe Mode and deleting a specific driver.  The issue forced Delta, Frontier and other airlines to ground flights, and impacted UK broadcaster Sky and the London Stock Exchange. On a Reddit thread, dozens of commenters stated that their companies were effectively offline due to the problem.  "Even if [CrowdStrike] fixed the issue causing the BSOD, I'm thinking how are we going to restore the thousands of devices that are not booting up," one user noted. "Let me explain to someone who is not tech savvy and is working from home how to boot their machine into safe mode," another wrote.  Reddit users including many IT managers from Australia, Malaysia, Japan, India, the Czech Republic and elsewhere have said they're fighting through the issue. "Here in the Philippines, specifically in my employer, it is like Thanos snapped his fingers. Half of the entire organization [is] down due to BSOD loop. Started at 2pm and is still ongoing. What a Friday," said one. CrowdStrike is a US-based security firm that provides real-time protection against security threats to corporations. One of its key products is Falcon, described by the company as "providing real-time indicators of attack, hyper-accurate detection and automated protection" from threats. A CrowdStrike spokesperson said it was likely an issue with Falcon that caused the incident.  To add to the pain, Microsoft appears to have also suffered a separate outage with its Azure services and Microsoft 365 app suite. "Users may be unable to access various Microsoft 365 apps and services," it wrote. It's not clear which, if any, of the outages are related to this instead of the CrowdStrike problem.  Update July 19, 2024 6:12 AM ET: CrowdStrike CEO George Kurtz has acknowledged the problem on X, saying it was caused by a defect in a content update for Windows hosts, and not a "security incident or cyberattack," He added that "the issue has been identified, isolated and a fix has been deployed." There's no mention on whether the fix will be usable on machines currently stuck in a boot loop. Mac and Linux hosts are not impacted, he added. An identical statement has been posted on CrowdStrike's blog. So far, there's no apology from the company over the incident.This article originally appeared on Engadget at https://www.engadget.com/faulty-cybersecurity-update-takes-out-banks-airlines-and-other-major-companies-worldwide-085142264.html?src=rss

Jul 19, 2024 - 18:30
 0
Faulty Microsoft cybersecurity update takes out banks, airlines and other major companies worldwide

A massive Microsoft Windows BSOD (blue screen of death) outage has impacted multiple companies worldwide including airlines, broadcasters and others. The problem was a caused by a faulty update from security giant CrowdStrike that forced PCs and servers into an unrecoverable boot loop. The change has since been rolled back, but many machines are still affected.

"We have widespread reports of BSODs on windows hosts, occurring on multiple sensor versions," CrowdStrike wrote in a pinned Reddit post. "[We have] identified a content deployment related to this issue and reverted those changes." The company went on to describe a workaround, which involves booting Windows into Safe Mode and deleting a specific driver. 

The issue forced Delta, Frontier and other airlines to ground flights, and impacted UK broadcaster Sky and the London Stock Exchange. On a Reddit thread, dozens of commenters stated that their companies were effectively offline due to the problem. 

"Even if [CrowdStrike] fixed the issue causing the BSOD, I'm thinking how are we going to restore the thousands of devices that are not booting up," one user noted. "Let me explain to someone who is not tech savvy and is working from home how to boot their machine into safe mode," another wrote. 

Reddit users including many IT managers from Australia, Malaysia, Japan, India, the Czech Republic and elsewhere have said they're fighting through the issue. "Here in the Philippines, specifically in my employer, it is like Thanos snapped his fingers. Half of the entire organization [is] down due to BSOD loop. Started at 2pm and is still ongoing. What a Friday," said one.

CrowdStrike is a US-based security firm that provides real-time protection against security threats to corporations. One of its key products is Falcon, described by the company as "providing real-time indicators of attack, hyper-accurate detection and automated protection" from threats. A CrowdStrike spokesperson said it was likely an issue with Falcon that caused the incident. 

To add to the pain, Microsoft appears to have also suffered a separate outage with its Azure services and Microsoft 365 app suite. "Users may be unable to access various Microsoft 365 apps and services," it wrote. It's not clear which, if any, of the outages are related to this instead of the CrowdStrike problem. 

Update July 19, 2024 6:12 AM ET: CrowdStrike CEO George Kurtz has acknowledged the problem on X, saying it was caused by a defect in a content update for Windows hosts, and not a "security incident or cyberattack," He added that "the issue has been identified, isolated and a fix has been deployed." There's no mention on whether the fix will be usable on machines currently stuck in a boot loop.

Mac and Linux hosts are not impacted, he added. An identical statement has been posted on CrowdStrike's blog. So far, there's no apology from the company over the incident.This article originally appeared on Engadget at https://www.engadget.com/faulty-cybersecurity-update-takes-out-banks-airlines-and-other-major-companies-worldwide-085142264.html?src=rss

What's Your Reaction?

like

dislike

love

funny

angry

sad

wow

Viral News Code whisperer by profession, narrative alchemist by passion. With 6 years of tech expertise under my belt, I bring a unique blend of logic and imagination to ViralNews360. Expect everything from tech explainers that melt your brain (but not your circuits) to heartwarming tales that tug at your heartstrings. Come on in, the virtual coffee's always brewing!