CrowdStrike issue causes major outage affecting businesses around the world

[ad_1]

Major global cyber outage hits airlines, banks and media outlets, impacting millions

An update by cybersecurity firm CrowdStrike led to a major IT outage on Friday, impacting businesses around the world.

CrowdStrike told NBC it is in the process of rolling back the update that caused the issue, and later said a fix for the defect had been deployed.

“CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts. Mac and Linux hosts are not impacted,” CEO George Kurtz said in a statement on X.

“This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed.”

He added that customers should refer to the support portal for the latest updates and work with their CrowdStrike representatives through official channels.

This is CNBC’s live blog covering the latest news and updates on the IT outage impacting businesses worldwide. See below for updates.

” featuredcontent=”

Financial services and doctors’ offices were disrupted on Friday, while TV broadcasters went offline as businesses worldwide grappled with an ongoing major IT outage. Air travel has been particularly hit, with planes grounded, services delayed and airports issuing advice to passengers.

Earlier on Friday, cybersecurity giant CrowdStrike experienced a major disruption, the company told NBC, following an issue with its latest tech update.

The company’s CEO George Kurtz has since said that the company is “actively working with customers impacted by a defect found in a single content update for Windows hosts,” stressing that Mac and Linux hosts are not affected.

“This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed,” he said on social media.

Separately, Microsoft cloud services were restored after an outage, the company said on Friday, even as many users continued to report issues.

Shares of both companies were losing ground in premarket trading on Friday morning.

” coverageenddate=”2024-07-20T08:00:00+0000″ relation=”[object Object]”/>

Kurtz apologized to those impacted in an interview on NBC News’ “Today” early Friday.

“I want to start with saying we’re deeply sorry for the impact that we’ve caused to customers, to travelers, to anyone affected by this, including our company,” he said.

“The system was sent an update, and that update had a software bug in it and caused an issue with the Microsoft operating system. And now we are working with each and every customer to make sure that we can bring them back online.”

Kurtz added that the update was normal and part of the company’s routine process to prevent security risks, but noted that an investigation would be required to see what went wrong.

The confirmation came after widespread reports of technical issues, with many Microsoft users around the world facing an error screen known as the “blue screen of death.”

‘A major outage’

Airlines, hospitals and financial services firms were among the many businesses affected.

American Airlines, which describes itself as the world’s largest, said a technology issue was affecting “multiple carriers,” while the Dutch arm of Air France-KLM said it had been “forced to suspend most” of its operations.

In England, U.K., the Royal Surrey hospital declared a “critical incident” and had to temporarily suspend radiography treatment. The country’s National Health Service, meanwhile, said it was experiencing disruptions in the majority of doctors’ practices.

Banks and financial companies around the world have reported issues, with German insurance giant Allianz saying it was “experiencing a major outage that is impacting employees ability to log into their computers. It impacts multiple companies besides Allianz.”

NBC Universal is also being affected by the CrowdStrike outage.

See the latest updates on which companies are affected here.

‘Unprecedented’

Satnam Narang, senior staff researcher at Tenable, told CNBC on Friday that the outage was having a “profound impact” and was unique in its size and scope.

“The challenge here is that security software — because it’s doing its job to protect organizations — it has to have more privileged access to these machines,” he said.

“So … while people may be seeing these as Windows failures, they’re looking at it and seeing a little blue screen pop up, it’s not actually a Windows issue, it’s related to a faulty or bad update from those security software.”

Narang added: “We’ve never seen anything like this before, it’s very unprecedented.”

Omer Grossman, CIO at cybersecurity firm CyberArk, said the damage caused by this outage will be “dramatic.”

“The glitch is due to a software update of CrowdStrike’s EDR product. This is a product that runs with high privileges that protects endpoints. A malfunction in this can, as we are seeing in the current incident, cause the operating system to crash,” he said in an emailed comment.

Getting back online is unlikely to be easy, according to Grossman.

“It turns out that because the endpoints have crashed – the Blue Screen of Death – they cannot be updated remotely and this the problem must be solved manually, endpoint by endpoint. This is expected to be a process that will take days,” he added.

[ad_2]

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.