'it's Very, Very, Very, Very, Big': CrowdStrike Tech Outage Cripples Systems

A significant global tech failure disrupted operations across various industries on Friday, grounding flights and impacting sectors from banking to healthcare.

What Happened?

The disruption originated from CrowdStrike, a prominent U.S. cybersecurity company valued at approximately $83 billion, Reuters reported. CrowdStrike's "Falcon Sensor" software, used by over 20,000 subscribers worldwide, caused Microsoft Windows to crash, leading to the notorious "Blue Screen of Death."

At 5:30 PM NZT, CrowdStrike issued an alert to its clients, explaining that the issue was not a security incident or cyberattack. CEO George Kurtz reassured users via a post on X, stating that a fix had been deployed. However, many systems required manual intervention to resolve the crashes, as the affected computers couldn’t be updated automatically.

"This means in this state, devices can't be updated automatically, meaning manual intervention is required," said Daniel Card of UK-based cybersecurity consultancy PwnDefend.

Ciaran Martin, former head of the UK's National Cyber Security Centre, emphasised the unprecedented scale of the problem. "This is not unprecedented, but I'm struggling to think of an outage at quite this scale. It has happened over the years, but this is one of the biggest. I think it'll likely be short-lived because, the nature of the problem is actually quite simple. But it's very, very, very, very, big," he stated.

Increasing Dependency on Tech Giants

The incident highlighted the risks associated with the growing reliance on interconnected technology companies. The COVID-19 pandemic accelerated this dependency, making governments and businesses more vulnerable to tech failures.

Many businesses use Endpoint Detection and Response (EDR) products to protect their networks from cyber threats. These products, like those from CrowdStrike, run on corporate machines to detect potential attacks, scan for viruses, and prevent unauthorized access. In this case, a conflict between CrowdStrike's code and Microsoft's Windows OS caused widespread system crashes.

"With the move to the cloud and with companies like CrowdStrike owning huge market shares, their software is running on millions of computers around the world," Card explained.

Impacted Sectors

The tech outage had far-reaching effects, disrupting operations in various sectors globally, including:

• Airports and Airlines: Spanish airports and U.S. airlines like American Airlines, Delta Airlines, United Airlines, and Allegiant Air grounded flights due to communication issues.
• Media: In Britain, Sky News was off-air for hours before service was restored.
• Governments: Australia, New Zealand, and several U.S. states faced operational issues.
• Banking and Healthcare: These sectors experienced significant disruptions, underscoring the critical need for reliable cybersecurity measures.

The incident serves as a stark reminder of the vulnerabilities in an increasingly digital world and underscores the importance of robust cybersecurity solutions. Stay tuned for further updates as the situation develops.