NATIONAL NEWS

How a faulty CrowdStrike update crashed computers around the world

Jul 20, 2024, 11:00 AM

CHICAGO, ILLINOIS - JULY 19: Flight information screens display a recovery window in the second ter...

CHICAGO, ILLINOIS - JULY 19: Flight information screens display a recovery window in the second terminal at Chicago O'Hare International Airport on July 19, 2024 in Chicago, Illinois. Businesses including airlines worldwide were affected by a global technology outage that was attributed to a software update issued by CrowdStrike, a cybersecurity firm whose software is used by many industries around the world. (Photo by Anna Moneymaker/Getty Images)

(Photo by Anna Moneymaker/Getty Images)

Airlines, banks, hospitals and other risk-averse organizations around the world chose cybersecurity company CrowdStrike to protect their computer systems from hackers and data breaches.

But all it took was one faulty CrowdStrike software update to cause global disruptions Friday that grounded flights, knocked banks and media outlets offline, and disrupted hospitals, retailers and other services.

“This is a function of the very homogenous technology that goes into the backbone of all of our IT infrastructure,” said Gregory Falco, an assistant professor of engineering at Cornell University. “What really causes this mess is that we rely on very few companies, and everybody uses the same folks, so everyone goes down at the same time.”

The trouble with the update issued by CrowdStrike and affecting computers running Microsoft’s Windows operating system was not a hacking incident or cyberattack, according to CrowdStrike, which apologized and said a fix was on the way.

But it wasn’t an easy fix. It required “boots on the ground” to remediate, said Gartner analyst Eric Grenier.

“The fix is working, it’s just a very manual process and there’s no magic key to unlock it,” Grenier said. “I think that is probably what companies are struggling with the most here.”

While not everyone is a client of CrowdStrike and its platform known as Falcon, it is one of the leading cybersecurity providers, particularly in transportation, health care, banking and other sectors that have a lot at stake in keeping their computer systems working.

After airline outage mess, SLC airport travelers finally make it home

“They’re usually risk-averse organizations that don’t want something that’s crazy innovative, but that can work and also cover their butts when something goes wrong. That’s what CrowdStrike is,” Falco said. “And they’re looking around at their colleagues in other sectors and saying, ‘Oh, you know, this company also uses that, so I’m gonna need them, too.’”

Worrying about the fragility of a globally connected technology ecosystem is nothing new. It’s what drove fears in the 1990s of a technical glitch that could cause chaos at the turn of the millennium.

“This is basically what we were all worried about with Y2K, except it’s actually happened this time,” wrote Australian cybersecurity consultant Troy Hunt on the social platform X.

Across the world Friday, affected computers were showing the “blue screen of death” — a sign that something went wrong with Microsoft’s Windows operating system.

But what’s different now is “that these companies are even more entrenched,” Falco said. “We like to think that we have a lot of players available. But at the end of the day, the biggest companies use all the same stuff.”

Founded in 2011 and publicly traded since 2019, CrowdStrike describes itself in its annual report to financial regulators as having “reinvented cybersecurity for the cloud era and transformed the way cybersecurity is delivered and experienced by customers.” It emphasizes its use of artificial intelligence in helping to keep pace with adversaries. It reported having 29,000 subscribing customers at the start of the year.

The Austin, Texas-based firm is one of the more visible cybersecurity companies in the world and spends heavily on marketing, including Super Bowl ads. At cybersecurity conferences, it’s known for large booths displaying massive action-figure statues representing different state-sponsored hacking groups that CrowdStrike technology promises to defend against.

CrowdStrike CEO George Kurtz is among the most highly compensated in the world, recording more than $230 million in total compensation in the last three years. Kurtz is also a driver for a CrowdStrike-sponsored car racing team.

After his initial statement about the problem was criticized for lack of contrition, Kurtz apologized in a later social media post Friday and on NBC’s “Today Show.”

“We understand the gravity of the situation and are deeply sorry for the inconvenience and disruption,” he said on X.

Richard Stiennon, a cybersecurity industry analyst, said this was a historic mistake by CrowdStrike.

“This is easily the worst faux pas, technical faux pas or glitch of any security software provider ever,” said Stiennon, who has tracked the cybersecurity industry for 24 years.

While the problem is an easy technical fix, he said, it’s impact could be long-lasting for some organizations because of the hands-on work needed to fix each affected computer. “It’s really, really difficult to touch millions of machines. And people are on vacation right now, so, you know, the CEO will be coming back from his trip to the Bahamas in a couple of weeks and he won’t be able to use his computers.”

Stiennon said he did not think the outage revealed a bigger problem with the cybersecurity industry or CrowdStrike as a company.

“The markets are going to forgive them, the customers are going to forgive them, and this will blow over,” he said.

Forrester analyst Allie Mellen credited CrowdStrike for clearly telling customers what they need to do to fix the problem. But to restore trust, she said there will need to be a deeper look at what occurred and what changes can be made to prevent it from happening again.

“A lot of this is likely to come down to the testing and software development process and the work that they’ve put into testing these kinds of updates before deployment,” Mellen said. “But until we see the complete retrospective, we won’t know for sure what the failure was.”

___

Associated Press writer Alan Suderman in Richmond, Virginia, contributed to this report.

KSL 5 TV Live

National News

FILE - A Delta Air Lines jet leaves the gate, Friday, July 19, 2024, at Logan International Airport...

David Koenig, The Associated Press

Most airlines except one are recovering from the CrowdStrike tech outage

Delta Air Lines struggled for a fourth straight day to recover from a worldwide technology outage caused by a faulty software update, stranding tens of thousands of passengers and drawing unwanted attention from the federal government.

5 months ago

FILE - President Joe Biden attends Working Session III of the NATO Summit in Washington, July 11, 2...

Associated Press

Hollywood reacts to Joe Biden exiting the presidential race

Hollywood was quick to react to the news that President Joe Biden was ending his bid for reelection and endorsing Vice President Kamala Harris.

5 months ago

Vice President Kamala Harris speaks from the South Lawn of the White House in Washington, Monday, J...

Zeke Miller and Seung Min Kim

Harris wins Pelosi endorsement, claims many of the delegates she needs for the nomination

Vice President Kamala Harris moved swiftly Monday to lock up Democratic delegates behind her campaign for the White House after President Joe Biden stepped aside.

5 months ago

WASHINGTON, DC - JULY 22: United Sates Secret Service Director Kimberly Cheatle testifies before th...

Alanna Durkin Richer and Farnoush Amiri

Secret Service director, grilled by lawmakers on the Trump assassination attempt, says: ‘We failed’

The Secret Service director is set to testify before a congressional committee as calls mount for her to resign over security failures at a rally where a 20-year-old gunman attempted to assassinate former President Donald Trump.

5 months ago

FILE - A Delta Air Lines jet leaves the gate, Friday, July 19, 2024, at Logan International Airport...

Associated Press

Delta Air Lines says cancellations continue as it tries to restore operations after tech outage

Airlines, including Delta Air Lines, continued to struggle to restore operations two days after a faulty software update caused technological havoc worldwide.

5 months ago

People wait in line at Hartsfield-Jackson International Airport on July 20 in Atlanta, Georgia. (Me...

Dalia Faheid and Lauren Mascarenhas, CNN

More than 1,500 US flights canceled for the third day straight as airlines slowly recover from global tech outage

More than 1,500 US flights have been canceled for the third day straight, as airlines struggle to recover from a global tech outage that left thousands of passengers stranded at airports.

5 months ago

Sponsored Articles

young male technician is repairing a printer at office...

Les Olson

Unraveling the dilemma between leasing and buying office technology

Carefully weigh these pros and cons to make an informed decision that best suits your business growth and day-to-day operation. 

A kitchen in a modern farmhouse....

Lighting Design

A room-by-room lighting guide for your home

Bookmark this room-by-room lighting guide whenever you decide to upgrade your lighting or style a new home.

Photo courtesy of Artists of Ballet West...

Ballet West

The rising demand for ballet tickets: why they’re harder to get

Ballet West’s box office is experiencing demand they’ve never seen before, leaving many interested patrons unable to secure tickets they want.

Electrician repairing ceiling fan with lamps indoors...

Lighting Design

Stay cool this summer with ceiling fans

When used correctly, ceiling fans help circulate cool and warm air. They can also help you save on utilities.

Side view at diverse group of children sitting in row at school classroom and using laptops...

PC Laptops

5 internet safety tips for kids

Read these tips about internet safety for kids so that your children can use this tool for learning and discovery in positive ways.

Women hold card for scanning key card to access Photocopier Security system concept...

Les Olson

Why printer security should be top of mind for your business

Connected printers have vulnerable endpoints that are an easy target for cyber thieves. Protect your business with these tips.

How a faulty CrowdStrike update crashed computers around the world