A massive IT outage is affecting computer systems worldwide, impacting banks, media organizations, hospitals, transport services, shops, airports, and more in Australia and New Zealand. This unprecedented event has rendered many computers completely useless, a state referred to as being “bricked.”
Contents
What is CrowdStrike Falcon?
CrowdStrike Falcon is a cybersecurity software product from CrowdStrike, a leading US company in the tech market. Falcon is designed to protect computers from cyber attacks and malware. Known as “endpoint detection and response” (EDR) software, Falcon monitors computers for suspicious activity and helps lock down any detected threats. To do this, Falcon has deep access to the internal systems of the computers it protects, including internet communications, running programs, and opened files. This makes it similar to traditional antivirus software but much more powerful.
From #SydneyAirport to local #Woolworths stores, systems have been ground to a halt due to the global internet system crash.
— The Daily Telegraph (@dailytelegraph) July 19, 2024
MORE INFO: https://t.co/zebf5xj10R pic.twitter.com/bM1zCtZULw
Why Did Falcon Cause This Problem?
Falcon’s powerful and tightly integrated nature means that any malfunction can cause significant issues. Recently, an update to Falcon caused Windows 10 computers to crash and fail to reboot, resulting in the dreaded “blue screen of death” (BSOD). This malfunction has led to widespread computer failures.
Why is Falcon Widely Used?
CrowdStrike is a leader in EDR solutions, making Falcon a popular choice for organizations prioritizing cybersecurity. The affected entities include hospitals, media companies, universities, supermarkets, and more. The full impact of this outage is global and still unfolding.
Something super weird happening right now: just been called by several totally different media outlets in the last few minutes, all with Windows machines suddenly BSoD’ing (Blue Screen of Death). Anyone else seen this? Seems to be entering recovery mode: pic.twitter.com/DxdLyA9BLA
— Troy Hunt (@troyhunt) July 19, 2024
Why Aren’t Home PCs Affected?
CrowdStrike’s products are primarily used by large organizations needing robust network monitoring and intrusion response tools. Home users typically rely on built-in antivirus software or products from companies like Norton and McAfee, which are more suited to individual needs.
How Long Will This Take to Fix?
CrowdStrike has provided manual instructions for fixing the issue on affected computers. However, there is no automatic fix yet. IT teams may need to wipe and restore affected computers from backups or revert to an earlier Falcon version. This process could take a while, depending on the organization’s size and resources.
Lessons Learned
This incident highlights the irony that advanced security technology, which is supposed to protect systems, has caused a major outage. It serves as a reminder for companies like CrowdStrike to be extremely cautious when deploying automatic updates.
By understanding what CrowdStrike Falcon is and the recent issues, users and organizations can better appreciate the importance of cybersecurity and the challenges involved in maintaining it.
