USUS News

CrowdStrike CEO Says 97 Percent of Disrupted Devices Back Up After Global IT Outage

CrowdStrike said in the post-incident review that it’s taking steps to prevent future problems with software updates.
Save
CrowdStrike CEO Says 97 Percent of Disrupted Devices Back Up After Global IT Outage
An information screen informs travelers that train information is unavailable due to a global technical outage, at Canal Street subway station, in New York City, on July 19, 2024. (Adam Gray/Getty Images)
Tom Ozimek
Updated:
0:00

CrowdStrike CEO George Kurtz announced on Thursday that 97 percent of the Windows sensors affected by a problematic software update that caused last week’s global IT outage have been restored.

Mr. Kurtz added in his July 25 statement that the cybersecurity company “will not rest” until the remaining 3 percent of the Windows sensors, which are software components that collect information and monitor for potential cyber threats, are back up and running.
“We understand our work is not yet complete, and we remain committed to restoring every impacted system,” wrote Mr. Kurtz, who faces demands from Republican lawmakers to testify before Congress about the outage, which caused around 8.5 million Windows machines to crash, disrupting banks, hospitals, flights, and other operations across the globe.

“To our customers still affected, please know we will not rest until we achieve full recovery,” he added.

The CrowdStrike chief also shared a preliminary post-incident review, which explained that the company released a “problematic” content configuration update for the Windows sensors on July 19, which resulted in a Windows system crash.

Specifically, there was an undetected error in an update for CrowdStrike’s security software that provides new instructions to the software on how to spot and stop novel threats.

Related Stories
CrowdStrike Responds to Hackers’ Data Leak Claim
7/26/2024
CrowdStrike Responds to Hackers’ Data Leak Claim
After CrowdStrike Outage, Companies and Governments Reassess Risks of Using Cloud
7/24/2024
After CrowdStrike Outage, Companies and Governments Reassess Risks of Using Cloud

Computers running Mac and Linux operating systems were not affected by the update bug.

“I am deeply sorry for the disruption this outage has caused and personally apologize to everyone impacted. While I can’t promise perfection, I can promise a response that is focused, effective, and with a sense of urgency,” Mr. Kurtz said in his message.

CrowdStrike said in the post-incident review that it’s taking steps to prevent future problems with software updates. The company is bolstering its testing and validation processes and will be releasing future updates in a gradual and staggered way.

The company is also giving customers more control over when and where updates are deployed, and offering detailed release notes for the updates.

CrowdStrike, founded in 2011 and based in Austin, Texas, provides cloud-based software that protects computer systems from cyberattacks for tens of thousands of companies, including 300 of the Fortune 500. Their software has deep access to key parts of computer operating systems.

Experts say that the outage raises important questions about the vulnerability of the world’s technological infrastructure.

Laura DeNardis, professor and director of the Center for Digital Ethics at Georgetown University, wrote in a July 25 note that the disruptive effect of the outage highlights the need for the development of multi-stakeholder strategies from the private sector, technical coordinating bodies, as well as governments.

“Media and government attention around tech policy over focuses on social media content problems while often ignoring the more critical issues around underlying infrastructure,” Ms. DeNardis wrote. “There are hidden layers of infrastructure—cybersecurity platforms, protocols, the Domain Name System, routing and addressing, satellite systems—upon which everything depends.”

While there’s little scope for ordinary citizens to affect the bigger issues of bolstering the security of critical infrastructure, Ms. DeNardis writes anyone who connects to the internet for things like email can take steps to help reduce cyber risk. This includes using complex passwords, using multi-factor authentication, keeping software up-to-date, never using unsecured Wi-Fi networks, and using a virtual private network.

Tom Ozimek is a senior reporter for The Epoch Times. He has a broad background in journalism, deposit insurance, marketing and communications, and adult education.
twitter
Related Topics