keneci
News • Science & Tech • Comedy
CrowdStrike, Microsoft Release Preliminary Reports Following Disruptive Buggy Software Update That Affected Windows Computers Worldwide
July 29, 2024
post photo preview

Following the cybersecurity company's July 19 software update debacle which affected Windows computers worldwide, and the ensuing disruptions, CrowdStrike has released a Preliminary Post Incident Review(PIR) on the Content Configuration Update Impacting the Falcon Sensor and the Windows Operating System (BSOD). This will be more detailed in the company's full investigation in the forthcoming Root Cause Analysis that will be released publicly, according to CrowdStrike.

"On Friday, July 19, 2024 at 04:09 UTC, as part of regular operations, CrowdStrike released a content configuration update for the Windows sensor to gather telemetry on possible novel threat techniques," the company wrote in the preliminary review. "These updates are a regular part of the dynamic protection mechanisms of the Falcon platform. The problematic Rapid Response Content configuration update resulted in a Windows system crash. Systems in scope include Windows hosts running sensor version 7.11 and above that were online between Friday, July 19, 2024 04:09 UTC and Friday, July 19, 2024 05:27 UTC and received the update. Mac and Linux hosts were not impacted. The defect in the content update was reverted on Friday, July 19, 2024 at 05:27 UTC. Systems coming online after this time, or that did not connect during the window, were not impacted."

As to what Went wrong and why? The company writes: "CrowdStrike delivers security content configuration updates to our sensors in two ways: Sensor Content that is shipped with our sensor directly, and Rapid Response Content that is designed to respond to the changing threat landscape at operational speed. The issue on Friday involved a Rapid Response Content update with an undetected error."

The report continues:

"Sensor Content provides a wide range of capabilities to assist in adversary response. It is always part of a sensor release and not dynamically updated from the cloud. Sensor Content includes on-sensor AI and machine learning models, and comprises code written expressly to deliver longer-term, reusable capabilities for CrowdStrike’s threat detection engineers.

"These capabilities include Template Types, which have pre-defined fields for threat detection engineers to leverage in Rapid Response Content. Template Types are expressed in code. All Sensor Content, including Template Types, go through an extensive QA process, which includes automated testing, manual testing, validation and rollout steps.

"The sensor release process begins with automated testing, both prior to and after merging into our code base. This includes unit testing, integration testing, performance testing and stress testing. This culminates in a staged sensor rollout process that starts with dogfooding internally at CrowdStrike, followed by early adopters. It is then made generally available to customers. Customers then have the option of selecting which parts of their fleet should install the latest sensor release (‘N’), or one version older (‘N-1’) or two versions older (‘N-2’) through Sensor Update Policies.

"The event of Friday, July 19, 2024 was not triggered by Sensor Content, which is only delivered with the release of an updated Falcon sensor. Customers have complete control over the deployment of the sensor -- which includes Sensor Content and Template Types."

Microsoft in a blog post, also examined the CrowdStrike outage and provided a technical overview of the root cause.

The computing giant explains why security products use kernel-mode drivers today and the safety measures Windows provides for third-party solutions. And shares how customers and security vendors can better leverage the integrated security capabilities of Windows for increased security and reliability. Microsoft also provides a look into how Windows will enhance extensibility for future security products.

Microsoft also confirms CrowdStrike’s analysis that this was a read-out-of-bounds memory safety error in the cybersecurity developed CSagent.sys driver.


CrowdStrike Software Bug Causes Global IT Outage, Disruptions In Aviation, Other Sectors

A software update from a United States cybersecurity firm CrowdStrike on Friday(July 19), caused a widespread IT outage and 'blue screens of death,' affecting millions of Microsoft Windows devices worldwide. The incident resulted in significant disruptions to various industries, including aviation.

Hundreds of flights were canceled or delayed globally, with Delta Air Lines being particularly affected. The outage impacted airport systems, including baggage handling and security screening, causing long lines and congestion at the airports, as passengers were unable to check in or access flight information.

Many Fortune 500 companies, including airlines, are estimated to have lost up to $5.4 billion in revenues and gross profit due to the outage. The health care and banking sectors were also severely affected, with estimated losses of $1.94 billion and $1.15 billion, respectively.

In the United Kingdom, some hospitals experienced issues with electronic patient records and medical equipment. Flights were canceled or delayed, with British Airways and EasyJet among the airlines affected. Firms relying on CrowdStrike’s cybersecurity services, such as security monitoring and incident response, were also affected. Ambulance and fire services faced difficulties with communication and dispatch systems.

Also impacted in the the UK, are thousands of businesses and organizations using Microsoft products, such as Windows and Office. Amazon Web Services (AWS) users also experienced issues with their cloud services.

The cybersecurity firm has since released a software update to fix the bug.

CrowdStrike CEO George Kurtz faced backlash for his initial response on X, to the debacle. “CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts,” Kurtz wrote Friday. “Mac and Linux hosts are not impacted. This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed.”

Kurtz initially struggled to provide a timeline for when systems would be restored, leaving customers and regulators in the dark. His response was criticized for being too technical and lacking a personal touch.

Lulu Meservey, chief executive of public relations company Rostra, posted a scathing critique of the statement on social media platform X earning over 15,000 likes as she lambasted Kurtz for using “weapons-grade corpo speak.”

“Let’s be clear. Legalese doublespeak is designed to dodge and obfuscate rather than inform or communicate,” said Meservey. “This statement was obviously written by a committee of lawyers and middle managers whose only goal was to avoid legal risk and threats to their own job security. If you can’t understand what the statement is even saying, it’s working as intended.”

She criticised Kurtz for adopting a “passive voice” and described the statement as “almost comical in its efforts to dodge assigning responsibility,” before pointing out a lack of an apology.

“The first words should be ‘I’m sorry,’” she said. “This outage knocked out 911 call centres and hospitals. People literally might have died. And the company’s CEO is out here playing it down as if it’s not a big deal.”

To make matters worse, CrowdStrike offered a $10 UberEats voucher as a token of apology to its staff and partners. This gesture was widely panned as insufficient and insensitive, particularly given the significant financial losses incurred by affected businesses, estimated to be around $5.4 billion.

Kurtz, in a statement on the company’s website late on Friday afternoon, apologized once again for the outage and said that CrowdStrike was working to help restore systems.

“Nothing is more important to me than the trust and confidence that our customers and partners have put into CrowdStrike,” Kurtz said. “As we resolve this incident, you have my commitment to provide full transparency on how this occurred and steps we’re taking to prevent anything like this from happening again.”

The CEO told NBC’s Today Show in the US that the problem was down to a bug in a single update. “We identified this very quickly and remediated the issue,” he said, adding that CrowdStrike was now “working with each and every customer to make sure that we can bring them back online.”

Kurtz said there had been a “negative interaction” between the update and Microsoft’s operating system, which had then caused computers to crash, sparking the global outage, which remains ongoing.

Asked how one faulty update could cause such global chaos, he said: “We have to go back and see what happened here, our systems are always looking for the latest attacks from adversaries that that are out there.”

He reiterated that there was no possibility it was a cyber-attack. However, although the problem had been identified and a fix issued, Kurtz said “it could be some time for some systems” to return to normal, stressing that they would not “just automatically recover.”

Authorities in the UK and the US Department of Transportation are investigating the incident, and airlines are reviewing their contingency plans to mitigate the impact of future outages. Kurtz is due to testify in a US congressional hearing.

 

community logo
Join the keneci Community
To read more articles like this, sign up and join my community today
0
What else you may like…
Videos
Posts
Articles
SpaceX Starlink Internet Satellites

With Starlink internet, data is continuously being sent between a ground dish and a Starlink satellite orbiting 550km above. Furthermore, the Starlink satellite zooms across the sky at 27,000 km/hr! MORE VIDEOS ON KENECI NETWORK RUMBLE CHANNEL: https://rumble.com/c/Keneci

00:28:08
Elon Musk, DOGE Speak On Waste And Fraud

US Department of Government Efficiency Services (USDS) led by Elon Musk speak on the "mind-boggling" fraud and waste in UInited States federal government

00:00:45
January 17, 2025
SpaceX Launches Starship 7th Test Flight

SpaceX successfully executed its second-ever “chopsticks” catch of a Super Heavy booster (or Booster 14) using the “Mechazilla” launch tower on Thursday(Jan. 16), during the seventh uncrewed test flight of the company's 123-meter Starship rocket. However, the megarocket's upper stage(or Ship 33) was lost approximately 8.5 minutes into the flight in a “rapid unscheduled disassembly(RUD)” or explosion

00:10:30
Welcome to Keneci Network!

Join the conversations!

September 17, 2024
Charges Against Sean 'Diddy' Combs In Grand Jury Indictment

The rapper was charged with racketeering conspiracy, sex trafficking by force, fraud or coercion, and transportation to engage in prostitution in the indictment unsealed Tuesday(Sept. 17)

Combs-Indictment-24-Cr.-542.pdf
"Dear husband"

A Dubai princess took to social media to announce she's divorcing her husband who's worth $40B.

She claims the billionaire is busy with his "other [female] companions"

post photo preview
post photo preview
Elon Musk, Trump 'Big Beautiful Bill' Feud Fallout

The feud between U.S. President Donald Trump and Elon Musk escalated Thursday, with Musk accusing Trump of having ties to convicted sex offender Jeffrey Epstein and criticizing Trump's "big, beautiful" spending bill. Musk alleged that Trump is in the Epstein files, which is why they have not been made public, and suggested that Trump would not have won the election without him.

The White House's Press Secretary Karoline Leavitt, calls Musk’s claim “an unfortunate episode” driven by his dissatisfaction with the bill’s lack of EV subsidies. A source notes Trump banned Epstein from Mar-a-Lago and references the February 2025 release of flight logs mentioning Trump.

The conflict began when Musk criticized the "big, beautiful" tax and spending bill, calling it an "abomination" and urging to keep electric vehicle (EV) and solar incentives while removing wasteful spending Trump responded by expressing disappointment in Musk, stating that he was "surprised" by Musk's criticism.

During a meeting with German Chancellor Friedrich Merz, Thursday, Trump addressed Musk’s criticism publicly, saying he’s “very disappointed” in Musk, who “knew the inner workings of this bill better than almost anybody.” Trump claims Musk’s objections stem from the removal of the $7,500 EV tax credit, which he says Musk knew about for months. He suggests Musk may have “Trump Derangement Syndrome.”

Trump also mocked Musk’s appearance, referencing a recent black eye (attributed to Musk’s son) and questioning why he didn’t cover it with makeup.

In a social media post, Trump threatened to cancel Musk’s government contracts, including those for SpaceX and Tesla, stating, “The easiest way to save money in our Budget, Billions and Billions of Dollars, is to terminate Elon’s Governmental Subsidies and Contracts.” He also claimed he asked Musk to leave DOGE because he was “wearing thin.”

Escalating the feud Musk responded by saying SpaceX would begin decommissioning its Dragon spacecraft, indicating a potential withdrawal from government contracts.

Musk then took to X to make his accusations about the Epstein files. He wrote, "Time to drop the really big bomb: @realDonaldTrump is in the Epstein files. That is the real reason they have not been made public. Mark this post for the future. The truth will come out."

oMI-YMPaKR1qGVLoLQtxaxqzj8LmpgYKPh7sJ8DfmjdkhNZ428Qf3P8NNZiykZzprloLt_pxavtxt9ZGMrilT738j_5rvJgFpXjgFA6OCFsMxKUWJ3SAHFoyH6aYxyJ1Nw=w1280

The White House and Trump's supporters defended Trump, with the White House press secretary describing Musk's comments as "unfortunate" and suggesting that Musk was unhappy with the bill's content. Trump also suggested that Musk was upset about the removal of EV subsidies and mandates, which could affect Musk's Tesla business.

Despite the heated exchanges, Trump downplayed the situation to reporters and instead referenced his policy implementations, saying, "Oh it's okay, it's going very well, never done better."

Throughout the day, Musk's net worth dropped significantly, losing approximately $27 billion, although he remained the world's richest man with a net worth of around $388 billion.

Speaking to reporters by phone Friday, Trump said in response to reports of possible phone call with Musk, "I'm not even thinking about Elon. He's got a problem. The poor guy’s got a problem....No. I won't be speaking to him for a while I guess, but I wish him well."

“Honestly I’ve been so busy working on China… working on Russia… working on Iran.. I’m not thinking about Elon musk .. I just wish him well....,“ Trump later told reporters. "I hope he does well with Tesla."

Read full Article
post photo preview
Trump Announces Travel Ban, Restrictions On 19 Countries

President Donald Trump signed a proclamation on Wednesday, restricting travel to the United States from 12 countries and imposing partial restrictions on 7 others. The countries fully banned from entering the U.S. are Afghanistan, Myanmar, Chad, Republic of the Congo, Equatorial Guinea, Eritrea, Haiti, Iran, Libya, Somalia, Sudan, and Yemen.

Countries subject to partial restrictions include Burundi, Cuba, Laos, Sierra Leone, Togo, Turkmenistan, and Venezuela.

The ban takes effect on June 9, 2025.

The proclamation includes exemptions for lawful permanent residents (green card holders); existing visa holders (visas issued before June 9, 2025, will not be revoked); Afghans eligible for Special Immigrant Visas (SIVs) who assisted the U.S. government; diplomats, athletes (e.g., for the World Cup or Olympics), and dual nationals with passports from non-restricted countries and individuals whose entry serves U.S. national interests, evaluated case-by-case.

The ban is subject to revision if countries improve vetting or security cooperation, and additional countries could be added if new threats emerge.

These restrictions aim to enhance national security and counterterrorism efforts by addressing deficiencies in the information needed to assess potential security threats posed by nationals of these countries.

Read full Article
post photo preview
Dave Portnoy Had A Meltdown In Heated Debate With Cohost About 'Jew Jokes,' Free speech

Barstool founder Dave Portnoy had a heated back and forth with his podcast's cohost Kirk Minihane over 'Jew jokes.'

Portnoy faced backlash recently on social media, after firing two waitresses and taking further action against some college students involved in an incident at his Barstool Sansom Street bar in Philadelphia, where a sign that read "Fuck the Jews," was displayed.

"Shut the fuck up you bald fuck" Portnoy screamed at Minihane during a recent The Unnamed Show episode after Minihane criticized Portnoy's approach to 'Jew jokes.'

Minihane argued that Americans and especially comedians have a right to free speech and to make jokes. While Portnoy suggested that given the war in Gaza and public anti-Israel sentiment online, 'Jew jokes' should not be allowed and offenders must be prosecuted.

"Shut up!... You work for me!" Portnoy screamed at Minihane who responded "Sure. You bet. For now..."

"Quit! I'll save $500,000." Portnoy said.

Minihane then asked "Is this a show or not a show? We can't have a conversation?"

"You're an idiot. You're literally saying people should be allowed to make Jew jokes whenever they want." Portnoy shot back.

Read full Article
See More
Available on mobile and TV devices
google store google store app store app store
google store google store app tv store app tv store amazon store amazon store roku store roku store
Powered by Locals