CrowdStrike Update Sparks Global Windows System Crashes
A significant global outage has disrupted operations across multiple sectors due to a faulty update from cybersecurity vendor CrowdStrike.
The update has caused Windows machines to crash, displaying the Blue Screen of Death (BSOD), and preventing them from rebooting.
The issue is tied to the Falcon Sensor, an endpoint protection software designed to block cyber attacks and record activity for threat detection.
Users worldwide have reported their systems bricking, with critical services being taken down by a file named "csagent.sys."
While CrowdStrike initially issued an advisory behind a registration wall, they later confirmed the problem publicly.
Brody Nisbet, CrowdStrike's chief threat hunter, shared a workaround:
booting Windows into Safe Mode or the Windows Recovery Environment (WRE)
Navigating to the CrowdStrike directory in System32, and deleting the problematic file matching "C-00000291*.sys."
However, this solution doesn't work for all affected machines.
The widespread issue has impacted major services and infrastructure, including Amazon Web Services, Microsoft 365, Azure, and several airlines, causing flight cancellations and communication breakdowns. In some airports, such as Hyderabad's Rajiv Gandhi International Airport, the situation became so critical that handwritten boarding passes were issued to passengers due to the failure of digital systems.
It is important to note that this issue primarily affects Windows environments where CrowdStrike's Falcon Sensor is installed. Systems without the Falcon Sensor are not impacted by this specific problem. The fault lies primarily with CrowdStrike's Falcon Sensor update, not with Microsoft. The problematic update caused the Falcon Sensor to malfunction, leading to the BSOD errors and subsequent system failures. Users and organizations relying on CrowdStrike for endpoint protection are advised to follow the workaround steps and stay tuned for further updates from CrowdStrike's support channels.
COO - Chief Operating Officer
8 个月https://www.dhirubhai.net/posts/vintowin_ibm-kyndryl-wipro-activity-7220293347268022272-BNbw?utm_source=share&utm_medium=member_android
Deputy Manager Information Security | Sapphire Mills | x_LUMS
8 个月https://www.youtube.com/watch?v=a9h_YISHPkA
Electronic Technology and software Engineer. Electrical Installation Supervising Engineer at Construction Engineering Organization
8 个月Everything starts with an update... It was a chilling night. Wind harshly whipped windows with a long branch of old beautiful willow tree. George Kurtz was releasing a new update for their crap which they called SECURITY PATCH while lightnings make night sky brighter than day long. At the top of the beautiful hill where there wasn't any signs of storm in a beautiful palace where they don't need any windows Linus Torvalds pouring wine and cheers to all Linux users, these who tell jokes and laugh loudly... Ernest Whichway!
Great post SIEM & SOC CyberSecurity Jobs ??. The recent Windows outage underscores how interconnected our tech ecosystems have become. It’s crucial for cybersecurity professionals to stay ahead of such vulnerabilities and ensure our systems are strong enough to handle these disruptions. What strategies are you employing to strengthen your cybersecurity posture in light of these events? ????? Also, do check out our recent blog on the same ?? https://opensecuritylabs.com/blog/2024/07/crowdstrike-causes-disruption/