Windows computers across the world experienced the dreaded blue screen of death (BSoD) caused by a faulty CrowdStrike update on Thursday (July 19). The issue affected airlines, broadcasters, banks, and many other businesses.
Delta, United, and American Airlines were forced to ground flights, and other airports and airlines across the world including Australia, India, Japan, and the UK experienced huge delays. Virgin Australia, Qantas Airways, and RyanAir are among the affected airlines.
The state of Alaska is experienced a 999 outage, according to the state’s Trooper’s Facebook page. British news channel Sky News was unable to broadcast and the London Stock Exchange website went down, though the exchange itself is still trading.
What is CrowdStrike and why is it causing global disruption?
CrowdStrike Holdings is an American cybersecurity company with customers across the world, hence the far-reaching nature of this outage. It manages the security of companies’ IT infrastructure, particularly to prevent network threats like ransomware and cyber attacks.
The nature of being a security service means CrowdStrike’s products have wide-reaching access across the systems it protects, hence the crippling effect of a single faulty update.
The outage was connected to a faulty update pushed live by the company in the early hours of Friday morning. The company has issued a support note acknowledging the issue: “We have widespread reports of BSODs on Windows hosts, occurring on multiple sensor versions.”
While the company has found the issue and reverted the update that caused the current outage, the fix does not seem to apply to machines that have already been affected.
Phoning CrowdStrike’s support line is equally futile: they are running a pre-recorded message acknowledging the fault. “Thanks for contacting Crowdstrike support. Crowdstrike is aware of reports of crashes on Windows related to the Falcon sensor.”
Troy Hunt, the creator of HaveIBeenPwned, a data breach checker, has taken to X, posting that “this will be the largest IT outage in history.”
I don’t think it’s too early to call it: this will be the largest IT outage in history
— Troy Hunt (@troyhunt) July 19, 2024
Participants in a thread of sys admins on Reddit are also discussing the outage. “This is an insane event for the world’s infrastructure,” said one user. Others are discussing how huge this issue is for their companies, with one person stating their company has over 14,000 endpoints that have been affected.
What has CrowdStrike said?
At 5:45AM EST, CrowdStrike’s CEO George Kurtz took to X to release a statement.
Kurtz said: “CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts. Mac and Linux hosts are not impacted. This is not a security incident or cyberattack.
“The issue has been identified, isolated and a fix has been deployed. We refer customers to the support portal for the latest updates and will continue to provide complete and continuous updates on our website.
“We further recommend organizations ensure they’re communicating with CrowdStrike representatives through official channels. Our team is fully mobilized to ensure the security and stability of CrowdStrike customers.”
CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts. Mac and Linux hosts are not impacted. This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed. We…
— George Kurtz (@George_Kurtz) July 19, 2024
Featured image credit: generated by Ideogram