Global IT outage may take ‘weeks’ to resolve warn experts after bungled update shuts down TV channels and airlines
TODAY’S global IT outage may take “weeks” to resolve – as airlines, TV channels, and even hospitals endure computer chaos around the world.
Experts have told The U.S. Sun that even though an official fix has been released, problems related to the mass IT outage will drag on.
PCs around the world booting up on Friday, July 19 faced an impassable “Blue Screen of Death”.
The bungled update has shut down airlines, broadcasts, supermarkets, and even banks around the world.
It’s been linked to a bungled update from security company CrowdStrike, which helps businesses stay safe from hackers.
CrowdStrike has issued a fix for the update – but the problems may keep going, according to security pro Al Lakhani.
“The fallout from incidents like these can be extensive and prolonged,” said Al, the CEO of security firm IDEE.
“In terms of restoring every affected computer to full operation, the recovery could span hours, days, or even weeks.
“This is because it is a supply chain attack. These are particularly damaging because a single compromised software update can impact thousands of organizations globally.
“Leading to severe consequences including service disruptions, theft of intellectual property, and threats to national security.”
Another security expert Adam Pilton told The U.S. Sun that it will take days for bigger businesses to recover.
“Depending upon the size of the organization will determine the recovery time,” said Adam, senior cybersecurity expert at Cybersmart, speaking to The U.S. Sun.
“CrowdStrike has released a fix and provided guidance which is working for many users.
“For smaller organisations, this will take hours, for larger organizations this may take days to resolve.”
The update meant that Microsoft Windows PCs were unable to turn on.
It will cost time and effort.
Martin Jartelius
They would get stuck in a “boot loop”, attempting to launch Windows but repeatedly failing.
This stops Windows PCs and even some servers from working properly.
The outage first appeared in Australia as businesses down under came online before the rest of the world.
But the issues quickly spread, with Sky News going off completely in the UK.
What is CrowdStrike?
THE global cyber outage affecting TV channels, banks, hospitals, airports and emergency services appears to relate to an issue at cybersecurity firm CrowdStrike.
IT security firm CrowdStrike ran a recorded phone message on Friday – saying it was aware of reports of crashes on Microsoft’s Windows operating system relating to its Falcon sensor.
A prerecorded message said: “Thanks for contacting CrowdStrike support. CrowdStrike is aware of reports of crashes on Windows… related to the Falcon sensor.”
The Falcon system monitors the computers it is installed on and detects hacks and bugs before responding to them.
CrowdStrike, headquartered in Austin, Texas, says it is a global security leader which provides an advanced platform to protect data.
A CrowdStrike update on Friday is said to have caused a critical error in Microsoft operating systems, affecting millions worldwide.
The company regularly updates systems with new anti-virus software
Toby Murray, associate professor in the School of Computing and Information Systems at The University of Melbourne, Australia said: “If Falcon is suffering a malfunction then it could be causing a widespread outage for two reasons .
“One: Falcon is widely deployed on many computers, and two: because of Falcon’s privileged nature.
“Falcon is a bit like anti-virus software: it is regularly updated with information about the latest online threats.
“It is possible that today’s outage may have been caused by a buggy update to Falcon.”.
Cyber expert Troy Hunt told Australian TV network Seven: “It looks like they’ve pushed a bad update, which is presently nuking every machine that takes it.”
Airlines, banks, and even hospitals across the US and UK have been affected.
Some devices will have avoided the update, and no more machines should be affected after the fix, according to CrowdStrike.
But others that have been affected will need to be manually repaired, and said it could drag on into the summer.
“For those impacted, if their systems did not get the erroneous update then that is a positive,” said Martin Jartelius, chief security officer at Outpost24, speaking to The U.S. Sun.
“If they did get the update, some seem to be able to get up and running and they will fix themselves.
“Others will currently have a workaround to get the good update and have some hands-on support, including boot into safe mode and removing some files, expect this to be done swiftly for any systems that need a high availability.
“But expect the cleanup in IT-departments to potentially drag out over the summer vacation period.
“So, where it really matters, this should not be too hard to fix, but it will cost time and effort.”
CROWDSTRIKE BLAMED – CEO'S FULL REPLY
Here's an official statement from CrowdStrike CEO George Kurtz...
“CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts.
“Mac and Linux hosts are not impacted.
“This is not a security incident or cyberattack.
“The issue has been identified, isolated and a fix has been deployed.
“We refer customers to the support portal for the latest updates and will continue to provide complete and continuous updates on our website.
“We further recommend organizations ensure they’re communicating with CrowdStrike representatives through official channels.
“Our team is fully mobilized to ensure the security and stability of CrowdStrike customers.”
Earlier today, experts told The U.S. Sun how this exposes a major vulnerability in our global IT systems.
They warned that hackers could take advantage of popular business security systems like this to shut down computers around the world – with Adam Pilton adding that “we must learn from this”.
In a statement sent to The U.S. Sun, CrowdStrike said: “This is not a security incident or cyberattack.
“The issue has been identified, isolated and a fix has been deployed.
“We refer customers to the support portal for the latest updates and will continue to provide complete and continuous updates on our website.
“We further recommend organizations ensure they’re communicating with CrowdStrike representatives through official channels.
“Our team is fully mobilized to ensure the security and stability of CrowdStrike customers.”
The U.S. Sun has asked Microsoft for comment and will update this story with any response.