How a software update from cyber firm CrowdStrike caused one of the world’s biggest IT blackouts (2024)

In this article

  • CRWD

George Kurtz, co-founder and CEO of CrowdStrike Inc., speaks during the Montgomery Summit in Santa Monica, California.

Patrick T. Fallon | Bloomberg | Getty Images

A fault with an update issued by cybersecurity company CrowdStrike led to a cascade effect among global IT systems Friday, with industries ranging from banking to airlines facing outages.

Banks and health-care providers saw their services disrupted and TV broadcasters went offline as businesses worldwide grappled with the ongoing outage. Air travel has been hit hard, too, with planes grounded and services delayed.

At the heart of the issue is Texas-based cybersecurity vendor CrowdStrike. On Friday, the cybersecurity firm experienced a major disruption following an issue with a software update.

So what happened, exactly? CNBC takes a look.

What is CrowdStrike and what does it do?

CrowdStrike is a cybersecurity vendor that develops software to help companies detect and block hacks. It is used by many of the world's Fortune 500 companies, including major global banks, health-care and energy companies.

CrowdStrike is what's known as an "endpoint security" firm as it uses cloud technology to apply cyber protections to devices that are connected to the internet.

This differs from alternative approaches used by other cyber firms, which involve applying protection directly to back-end server systems.

"Many companies use [CrowdStrike software] and install it on all of their machines across their organization," Nick France, chief technology officer at IT security firm Sectigo, told CNBC's "Squawk Box Europe" on Friday.

"So when an update happens that maybe has problems with it, it causes this problem where the machines reboot, and people can't get back into their computers."

What happened on Friday?

On Friday, people around the world began encountering an error screen known as the "blue screen of death."

This issue — a common problem among PCs, for example if a machine overheats — was the result of an update from CrowdStrikeconcerning its Falcon product.

Falcon is a platform developed by the company that's designed to stop cyber breaches using cloud technology — it is at the heart of the firm's focus on endpoints. CrowdStrike said Friday it is in the process of rolling back the update globally.

CrowdStrike's software requires deep access to a computer's operating system to scan for threats. In the case of Friday's outage, machines running Microsoft's Windows operating system crashed due to a fault in the way a software update issued by CrowdStrike interacted with Windows.

"We have been made aware of an issue impacting Virtual Machines running Windows Client and Windows Server, running the CrowdStrike Falcon agent, which may encounter a bug check (BSOD [blue screen of death]) and get stuck in a restarting state. We approximate impact started around 19:00 UTC on the 18th of July," Microsoft said in an update at 5:40 a.m. ET.

"We can confirm the affected update has been pulled by CrowdStrike. Customers that are continuing to experience issues should reach out to CrowdStrike for additional assistance," the company added.

Satnam Narang, senior staff researcher at Tenable, told CNBC on Friday that the outage was "very unprecedented."

"The challenge here is that security software — because it's doing its job to protect organizations — it has to have more privileged access to these machines," he said.

So, while people may be seeing their IT issues as a problem with Windows, "it's not actually a Windows issue, it's related to a faulty or bad update from those security software," Narang added.

A fix has been issued

Earlier, Microsoft said its cloud services had been restored after an outage that affected its Azure services and Microsoft 365 suite of apps in the central U.S. region. A company spokesperson said these are two different and nonrelated issues — one issue relates to Azure, the other is linked to CrowdStrike.

How a software update from cyber firm CrowdStrike caused one of the world’s biggest IT blackouts (2)

watch now

VIDEO3:4703:47

Major global cyber outage hits airlines, banks and media outlets, impacting millions

Squawk Box Europe

They added that they "anticipate a resolution is forthcoming," in respect to the CrowdStrike problem.

CrowdStrike is "actively working with customers impacted by a defect found in a single content update for Windows hosts," CEO George Kurtz said Friday in a update on social media platform X. He added that Mac and Linux hosts are not affected.

"This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed,"Kurtz said.

That fix could be hard to implement, though. Andy Grayland, chief information and security officer at threat intelligence firmSilobreaker, said that in order to implement a fix, engineers would have to go into each individual data center running windows.

They'd then have to log in, navigate to a certain CrowdStrike file, delete it and then reboot the entire system, he said.

"Where machines are encrypted, complex encryption keys also need to be entered manually. Unless Microsoft and CrowdStrike (if they are involved) pull something miraculous out of the bag, this could be painful to recover from."

Don’t miss these insights from CNBC PRO

  • Warren Buffett's decision to sell stocks and raise record cash before sell-off sends wake-up call
  • Here's what usually happens to stocks when the Fed cuts rates
  • Want to invest $50,000? Here are 5 ETFs to buy and hold, according to a wealth manager
  • These high-dividend-yielding stocks could see a rebound as rates decline, BMO says

How a software update from cyber firm CrowdStrike caused one of the world’s biggest IT blackouts (3)

Get a weekly round up of the top tech stories from around the world in your inbox every Friday.

Subscribe
How a software update from cyber firm CrowdStrike caused one of the world’s biggest IT blackouts (2024)

References

Top Articles
In real life, Simba’s mom would be running the pride
Why Do Lions Live In Groups? - African Lions
Levidia 2019
Jodie Sweetin Breast Reduction
6 Underground movie review & film summary (2019) | Roger Ebert
Creepshot. Org
I Feel Pretty (2018) | Rotten Tomatoes
Equipment Hypixel Skyblock
Best Fantasy Basketball Team
Member Handbook 2021 | Ohio Medicaid Caresource | Member Handbook
Fifi's Boyfriend Crossword Clue
Sandals Travel Agent Login
Tabdil Tarikh
Food Stamp System Down
Cuộc thi “Chung tay vì an toàn giao thông” năm 2024
Kaelis Dahlias
Aspen Portal Amherst Ny
Dimbleby Funeral Home
Cara In Creekmaw Code
Craigslist Of Valdosta Georgia
Hours For Autozone Near Me
Craigslist Goats For Sale By Owner Near Me
How to order half and half pizza dominoʼs online? - Chef's Resource
Alloyed Trident Spear
Elemental Showtimes Near Regal White Oak
Razwan Ali ⇒ Free Company Director Check
Bilt Rent Day Challenge June 2023 Answers
Andrew Camarata Castle Google Maps
2024-25 ITH Season Preview: USC Trojans
Dollar General Cbl Answers Shrink Awareness
Marketwatch Com Game
Apple Watch 9 vs. 10 im Vergleich: Unterschiede & Neuerungen
Quattrocento, Italienische Kunst des 15. Jahrhunderts
Ketchum Who's Gotta Catch Em All Crossword Clue
Dl Delta Extranet
Pipa Mountain Hot Pot渝味晓宇重庆老火锅 Menu
Rainfall Map Oklahoma
Pat's Atchafalaya Club Schedule
Mercantilism - Econlib
Puppies For Sale in Netherlands (98) | Petzlover
NUROFEN Junior Fieber-u.Schmerzsaft Oran.40 mg/ml - Beipackzettel
Barbarian Frenzy Build with the Horde of the Ninety Savages set (Patch 2.7.7 / Season 32)
Beacon Schneider La Porte
Kinda Crazy Craft
Snapcamms
Does Lowes Take Ebt
Leader of multi-state identity fraud ring sentenced to federal prison
Carros Jeep Wrangler Tachira | MercadoLibre 📦
11 Fascinating Axolotl Facts
Ap Bio Unit 2 Progress Check Mcq
Welcome to the Newest Members of the Lawrenceville School Faculty
H'aanit's Third Chapter | Gamer Guides: Your ultimate sou...
Latest Posts
Article information

Author: Sen. Emmett Berge

Last Updated:

Views: 6247

Rating: 5 / 5 (60 voted)

Reviews: 91% of readers found this page helpful

Author information

Name: Sen. Emmett Berge

Birthday: 1993-06-17

Address: 787 Elvis Divide, Port Brice, OH 24507-6802

Phone: +9779049645255

Job: Senior Healthcare Specialist

Hobby: Cycling, Model building, Kitesurfing, Origami, Lapidary, Dance, Basketball

Introduction: My name is Sen. Emmett Berge, I am a funny, vast, charming, courageous, enthusiastic, jolly, famous person who loves writing and wants to share my knowledge and understanding with you.