keneci
News • Science & Tech • Comedy
CrowdStrike, Microsoft Release Preliminary Reports Following Disruptive Buggy Software Update That Affected Windows Computers Worldwide
July 29, 2024
post photo preview

Following the cybersecurity company's July 19 software update debacle which affected Windows computers worldwide, and the ensuing disruptions, CrowdStrike has released a Preliminary Post Incident Review(PIR) on the Content Configuration Update Impacting the Falcon Sensor and the Windows Operating System (BSOD). This will be more detailed in the company's full investigation in the forthcoming Root Cause Analysis that will be released publicly, according to CrowdStrike.

"On Friday, July 19, 2024 at 04:09 UTC, as part of regular operations, CrowdStrike released a content configuration update for the Windows sensor to gather telemetry on possible novel threat techniques," the company wrote in the preliminary review. "These updates are a regular part of the dynamic protection mechanisms of the Falcon platform. The problematic Rapid Response Content configuration update resulted in a Windows system crash. Systems in scope include Windows hosts running sensor version 7.11 and above that were online between Friday, July 19, 2024 04:09 UTC and Friday, July 19, 2024 05:27 UTC and received the update. Mac and Linux hosts were not impacted. The defect in the content update was reverted on Friday, July 19, 2024 at 05:27 UTC. Systems coming online after this time, or that did not connect during the window, were not impacted."

As to what Went wrong and why? The company writes: "CrowdStrike delivers security content configuration updates to our sensors in two ways: Sensor Content that is shipped with our sensor directly, and Rapid Response Content that is designed to respond to the changing threat landscape at operational speed. The issue on Friday involved a Rapid Response Content update with an undetected error."

The report continues:

"Sensor Content provides a wide range of capabilities to assist in adversary response. It is always part of a sensor release and not dynamically updated from the cloud. Sensor Content includes on-sensor AI and machine learning models, and comprises code written expressly to deliver longer-term, reusable capabilities for CrowdStrike’s threat detection engineers.

"These capabilities include Template Types, which have pre-defined fields for threat detection engineers to leverage in Rapid Response Content. Template Types are expressed in code. All Sensor Content, including Template Types, go through an extensive QA process, which includes automated testing, manual testing, validation and rollout steps.

"The sensor release process begins with automated testing, both prior to and after merging into our code base. This includes unit testing, integration testing, performance testing and stress testing. This culminates in a staged sensor rollout process that starts with dogfooding internally at CrowdStrike, followed by early adopters. It is then made generally available to customers. Customers then have the option of selecting which parts of their fleet should install the latest sensor release (‘N’), or one version older (‘N-1’) or two versions older (‘N-2’) through Sensor Update Policies.

"The event of Friday, July 19, 2024 was not triggered by Sensor Content, which is only delivered with the release of an updated Falcon sensor. Customers have complete control over the deployment of the sensor -- which includes Sensor Content and Template Types."

Microsoft in a blog post, also examined the CrowdStrike outage and provided a technical overview of the root cause.

The computing giant explains why security products use kernel-mode drivers today and the safety measures Windows provides for third-party solutions. And shares how customers and security vendors can better leverage the integrated security capabilities of Windows for increased security and reliability. Microsoft also provides a look into how Windows will enhance extensibility for future security products.

Microsoft also confirms CrowdStrike’s analysis that this was a read-out-of-bounds memory safety error in the cybersecurity developed CSagent.sys driver.


CrowdStrike Software Bug Causes Global IT Outage, Disruptions In Aviation, Other Sectors

A software update from a United States cybersecurity firm CrowdStrike on Friday(July 19), caused a widespread IT outage and 'blue screens of death,' affecting millions of Microsoft Windows devices worldwide. The incident resulted in significant disruptions to various industries, including aviation.

Hundreds of flights were canceled or delayed globally, with Delta Air Lines being particularly affected. The outage impacted airport systems, including baggage handling and security screening, causing long lines and congestion at the airports, as passengers were unable to check in or access flight information.

Many Fortune 500 companies, including airlines, are estimated to have lost up to $5.4 billion in revenues and gross profit due to the outage. The health care and banking sectors were also severely affected, with estimated losses of $1.94 billion and $1.15 billion, respectively.

In the United Kingdom, some hospitals experienced issues with electronic patient records and medical equipment. Flights were canceled or delayed, with British Airways and EasyJet among the airlines affected. Firms relying on CrowdStrike’s cybersecurity services, such as security monitoring and incident response, were also affected. Ambulance and fire services faced difficulties with communication and dispatch systems.

Also impacted in the the UK, are thousands of businesses and organizations using Microsoft products, such as Windows and Office. Amazon Web Services (AWS) users also experienced issues with their cloud services.

The cybersecurity firm has since released a software update to fix the bug.

CrowdStrike CEO George Kurtz faced backlash for his initial response on X, to the debacle. “CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts,” Kurtz wrote Friday. “Mac and Linux hosts are not impacted. This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed.”

Kurtz initially struggled to provide a timeline for when systems would be restored, leaving customers and regulators in the dark. His response was criticized for being too technical and lacking a personal touch.

Lulu Meservey, chief executive of public relations company Rostra, posted a scathing critique of the statement on social media platform X earning over 15,000 likes as she lambasted Kurtz for using “weapons-grade corpo speak.”

“Let’s be clear. Legalese doublespeak is designed to dodge and obfuscate rather than inform or communicate,” said Meservey. “This statement was obviously written by a committee of lawyers and middle managers whose only goal was to avoid legal risk and threats to their own job security. If you can’t understand what the statement is even saying, it’s working as intended.”

She criticised Kurtz for adopting a “passive voice” and described the statement as “almost comical in its efforts to dodge assigning responsibility,” before pointing out a lack of an apology.

“The first words should be ‘I’m sorry,’” she said. “This outage knocked out 911 call centres and hospitals. People literally might have died. And the company’s CEO is out here playing it down as if it’s not a big deal.”

To make matters worse, CrowdStrike offered a $10 UberEats voucher as a token of apology to its staff and partners. This gesture was widely panned as insufficient and insensitive, particularly given the significant financial losses incurred by affected businesses, estimated to be around $5.4 billion.

Kurtz, in a statement on the company’s website late on Friday afternoon, apologized once again for the outage and said that CrowdStrike was working to help restore systems.

“Nothing is more important to me than the trust and confidence that our customers and partners have put into CrowdStrike,” Kurtz said. “As we resolve this incident, you have my commitment to provide full transparency on how this occurred and steps we’re taking to prevent anything like this from happening again.”

The CEO told NBC’s Today Show in the US that the problem was down to a bug in a single update. “We identified this very quickly and remediated the issue,” he said, adding that CrowdStrike was now “working with each and every customer to make sure that we can bring them back online.”

Kurtz said there had been a “negative interaction” between the update and Microsoft’s operating system, which had then caused computers to crash, sparking the global outage, which remains ongoing.

Asked how one faulty update could cause such global chaos, he said: “We have to go back and see what happened here, our systems are always looking for the latest attacks from adversaries that that are out there.”

He reiterated that there was no possibility it was a cyber-attack. However, although the problem had been identified and a fix issued, Kurtz said “it could be some time for some systems” to return to normal, stressing that they would not “just automatically recover.”

Authorities in the UK and the US Department of Transportation are investigating the incident, and airlines are reviewing their contingency plans to mitigate the impact of future outages. Kurtz is due to testify in a US congressional hearing.

 

community logo
Join the keneci Community
To read more articles like this, sign up and join my community today
0
What else you may like…
Videos
Posts
Articles
SpaceX Starlink Internet Satellites

With Starlink internet, data is continuously being sent between a ground dish and a Starlink satellite orbiting 550km above. Furthermore, the Starlink satellite zooms across the sky at 27,000 km/hr! MORE VIDEOS ON KENECI NETWORK RUMBLE CHANNEL: https://rumble.com/c/Keneci

00:28:08
Elon Musk, DOGE Speak On Waste And Fraud

US Department of Government Efficiency Services (USDS) led by Elon Musk speak on the "mind-boggling" fraud and waste in UInited States federal government

00:00:45
January 17, 2025
SpaceX Launches Starship 7th Test Flight

SpaceX successfully executed its second-ever “chopsticks” catch of a Super Heavy booster (or Booster 14) using the “Mechazilla” launch tower on Thursday(Jan. 16), during the seventh uncrewed test flight of the company's 123-meter Starship rocket. However, the megarocket's upper stage(or Ship 33) was lost approximately 8.5 minutes into the flight in a “rapid unscheduled disassembly(RUD)” or explosion

00:10:30
Welcome to Keneci Network!

Join the conversations!

September 17, 2024
Charges Against Sean 'Diddy' Combs In Grand Jury Indictment

The rapper was charged with racketeering conspiracy, sex trafficking by force, fraud or coercion, and transportation to engage in prostitution in the indictment unsealed Tuesday(Sept. 17)

Combs-Indictment-24-Cr.-542.pdf
"Dear husband"

A Dubai princess took to social media to announce she's divorcing her husband who's worth $40B.

She claims the billionaire is busy with his "other [female] companions"

post photo preview
September 04, 2025
post photo preview
U.S. Military Airstrike In Southern Caribbean Targets Vessel Allegedly Operated By Venezuelan Tren de Aragua Gang

The U.S. military on Tuesday, conducted a precision strike in the southern Caribbean against a vessel that had departed from Venezuela and was allegedly operated by the Tren de Aragua gang, a transnational criminal organization designated as a Foreign Terrorist Organization by the U.S. government.

President Donald Trump announced the operation on Truth Social, stating that 11 individuals, whom he referred to as "narcoterrorists" or "terrorists," were killed in the strike while the boat was transporting illegal narcotics in international waters. The strike was described as a "kinetic" operation carried out in the U.S. Southern Command (SOUTHCOM) area of responsibility.

The U.S. military confirmed a "precision strike" against the vessel. Trump shared a 29-second video clip on Truth Social showing a small, multi-engine speedboat traveling at sea before a bright flash and flames engulfed it. The video is largely in black and white, and Venezuela's Communications Minister Freddy Ñáñez falsely suggested it was artificially generated.

No U.S. military personnel were injured in the operation Secretary of State Marco Rubio confirmed the "lethal strike" on X stating it targeted a drug vessel operated by a designated narco-terrorist organization.

The Tren de Aragua gang originated over a decade ago within the notoriously violent prison system of Venezuela's Aragua state. It has since expanded its operations across Latin America, including to Chile, Colombia, and the United States, where it is involved in drug smuggling, kidnapping, extortion, sex trafficking, and acts of extreme violence such as beheadings.

The Biden administration designated it a transnational crime organization in 2024. President Trump, upon returning to office, escalated the designation, formally declaring Tren de Aragua a "Foreign Terrorist Organization" in February 2025, a move that is unusual for a criminal gang.

The strike on the vessel occurred amid a significant U.S. military deployment in the southern Caribbean. In recent weeks, the U.S. has sent at least seven warships, including the nuclear-powered submarine USS Virginia, and over 4,500 Marines and sailors to the region.

This build-up, which includes Aegis guided-missile destroyers like the USS Gravely and USS Jason Dunham, is part of the Trump administration's broader strategy to combat drug trafficking from Latin America. The administration has also increased surveillance flights with P-8 spy planes over international waters.

The deployment has been met with strong condemnation from Venezuela, with President Nicolás Maduro calling it an "extravagant, unjustifiable, immoral and absolutely criminal and bloody threat" and vowing to "declare a republic in arms" if attacked. Maduro has ordered troops to the border with Colombia and urged civilians to join militias in response.

The strike represents a dramatic escalation in the U.S. approach to drug cartels, signaling a willingness to use military force in the Americas.

The U.S. has also offered a $50 million reward for information leading to Maduro's arrest on drug-trafficking charges. Despite the military action, the administration has not signaled plans for a land invasion of Venezuela.

Read full Article
September 03, 2025
post photo preview
ISS Orbital Altitude Reboost Maneuver By SpaceX Dragon Cargo Spacecraft

SpaceX's Dragon cargo spacecraft (C211) on Wednesday Sept. 3 at about 1815 UTC, successfully completed its first test burn to demonstrate a new capability to help maintain the International Space Station's (ISS) orbital altitude.

This initial maneuver, lasting five minutes and three seconds, used two Draco engines located in the Dragon's trunk to raise the station's orbit by approximately one mile at its lowest point, positioning it in a 420 x 412-kilometer orbit.

The boost kit is expected to provide about a quarter of the propulsion needed annually to maintain the ISS's 418-kilometer-high orbit.

The new capability is enabled by an add-on "boost kit" installed in the Dragon's open-to-space aft trunk section.

This kit includes two Draco engines, six propellant tanks, and a helium pressurization system, forming an independent propellant system separate from the spacecraft's main systems. This hardware allows the Dragon to perform reboosts, a task traditionally handled by Russia's Progress vehicles.

This capability, introduced on the SpaceX CRS-33 mission, is part of NASA's strategy to reduce reliance on Russian vehicles and build fuel reserves for the station's eventual controlled deorbit, a process that will be managed by a future SpaceX-built deorbit vehicle. The Dragon's ability to perform these burns is a significant step towards the station's long-term operations and safe retirement.

This test marks the beginning of a series of planned burns throughout the fall of 2025 to sustain the station's altitude.

Read full Article
September 03, 2025
post photo preview
Comedian Graham Linehan Arrested In UK Over Critical Transgender Posts On X

Comedy writer Graham Linehan was arrested at Heathrow Airport on Monday, upon his arrival from Arizona, U.S., by five armed police officers on ridiculous suspicion of 'inciting violence' related to three posts he made on X in April 2025.

The posts that prompted his detention included one from April 20 stating: "If a trans-identified male is in a female-only space, he is committing a violent, abusive act. Make a scene, call the cops and if all else fails, punch him in the balls."

Another post from April 19 showed an image of a trans rally with the caption: "A photo you can smell."

He subsequently wrote: "I hate them. Misogynists and homophobes. Fuck em."

The 57-year-old was taken to a police station, questioned about the posts, and subsequently hospitalized due to a severe spike in blood pressure, which he described as "stroke territory," before being released on bail with a condition prohibiting him from posting on X until a further interview in October.

The Metropolitan Police confirmed the arrest and stated that officers became concerned for his health, resulting in the hospital visit, but claimed his condition was neither life-threatening nor life-changing. The arrest was carried out by armed officers from the MPS Aviation Unit.

Linehan described being met by five armed officers immediately after disembarking from his American Airlines flight, escorted to a private area, and informed of his arrest. He was placed in a cell and questioned about the tweets, during which his blood pressure reportedly reached over 200, leading to his transfer to the emergency department at a hospital for observation.

The arrest comes days before Linehan is scheduled to appear at Westminster Magistrates' Court on September 4, 2025, facing two charges: one of harassing transgender activist Sophia Brooks on social media and another of damaging her mobile phone during an October incident. He has denied these charges.

Linehan, is the Irish comedy writer best known for creating the sitcoms Father TedThe IT Crowd, and Black Books. He has become a prominent and outspoken critic of transgender rights movements since around 2018.

The comedian's arrest has sparked significant political and public reaction, with UK opposition politicians, including Shadow Justice Secretary Robert Jenrick and Labour backbencher Jonathan Hinder, criticizing the use of five armed officers for an arrest over social media posts, calling it a "ridiculous" waste of police time. Author JK Rowling also condemned the arrest, calling it "totalitarianism" and "deplorable."

Critics on social media slammed UK government for descending into tyranny, especially since the enactment of Britain's controversial Online Safety Act.

Read full Article
See More
Available on mobile and TV devices
google store google store app store app store
google store google store app tv store app tv store amazon store amazon store roku store roku store
Powered by Locals