The Pwnie Awards recognize both excellence and incompetence in the field of information security[citation needed]. Winners are selected by a committee of security industry professionals from nominations collected from the information security community.[1] Nominees are announced yearly at Summercon, and the awards themselves are presented at the Black Hat Security Conference.[2]
source:
https://en.wikipedia.org/wiki/CrowdStrike
July 2024 incident
Main article: 2024 CrowdStrike incident
On 19 July 2024, CrowdStrike released a software update to the vulnerability scanner Falcon Sensor. Flaws in the update caused blue screens of death on Microsoft Windows machines, disrupting millions of Windows computers worldwide.[67][68] Affected machines were forced into a bootloop, making them unusable. This was caused by an update to a configuration file, Channel File 291, which CrowdStrike says triggered a logic error and caused the operating system to crash.[69] The downtime caused a widespread global impact, grounding commercial airline flights, temporarily taking Sky News and other broadcasters offline, and disrupting banking and healthcare services as well as 911 emergency call centers.[8][70]
Although CrowdStrike issued a patch to fix the error, computers stuck in a bootloop were unable to connect to the Internet to download the patch before Falcon can load in and crash the device again. The recommended solution from CrowdStrike was to boot into safe mode or Windows Recovery Mode and manually delete Channel File 291.[72] This requires local administrator access and if the device is encrypted by BitLocker will also require a recovery key.[73] Microsoft has reported that some customers were able to remediate the issue solely by rebooting impacted devices up to 15 times.[74] [[ why would the 15th+ reboot cause the system to behave differently? hmm... ]]
Global IT Outage Linked To CrowdStrike Update Disrupts Businesses (techcrunch.com)273
Posted by msmash on Friday July 19, 2024 @10:00AM from the breaking-news dept.
A widespread IT outage, caused by a defective software update from cybersecurity firm CrowdStrike, is affecting businesses worldwide, causing significant disruptions across various sectors. The issue has primarily impacted computers running Windows, resulting in system crashes and "blue screen of death" errors. The travel industry appears to be among the hardest hit, with airlines and airports in multiple countries reporting problems with check-in and ticketing systems, leading to flight delays. Other affected sectors include banking, retail, and healthcare.
CrowdStrike CEO George Kurtz confirmed the outage was due to a "defect" in a content update for Windows hosts, ruling out a cyberattack. The company is working on a fix. CrowdStrike said the crash reports were "related to the Falcon Sensor" -- its cloud-based security service that it describes as "real-time threat detection, simplified management, and proactive threat hunting."
A Microsoft spokesperson told TechCrunch that the previous Microsoft 365 service disruption overnight July 18-19 was unrelated to the widespread outage triggered by the CrowdStrike update.
Editor's note: The story has been updated throughout the day and moved higher on the front page.
No comments:
Post a Comment