Crowdstrike admits ‘defect’ in software update caused IT outage that is wreaking worldwide chaos

Major IT Outage Wreaks Havoc Globally

Cybersecurity firm Crowdstrike has revealed that a “defect” in a recent software update has caused a massive IT outage, disrupting operations for airports, banks, hospitals, media outlets, and businesses worldwide.

On Friday, Crowdstrike, a leading cybersecurity firm with a global customer base, admitted that a defective software update had triggered the extensive IT outage. This revelation comes as numerous reports of disruptions poured in from across the globe, causing chaos in various sectors.

Widespread Impact Across Industries

The impact has been far-reaching. In the UK, broadcaster Sky News was forced off the air for several hours, illustrating the severity of the situation.

Travel Disruptions

Travelers faced widespread chaos as airlines canceled nearly 1,400 flights, according to aviation analytics company Cirium. Airports struggled with system failures and delays, leading to significant travel disruptions.

Airlines such as Qantas in Australia and US low-cost carriers Frontier and Sun Country Airlines were forced to ground flights. In Europe, Ryanair users reported being unable to check in for their flights, as noted on the outage tracking website Downdetector.com. KLM and other European carriers also warned of delays and cancellations.

Several airports, including Berlin Brandenberg, Edinburgh, Amsterdam Schiphol, and Zurich, reported significant IT issues, affecting flight operations and customer services. Airports in New Zealand, Japan, and India experienced similar problems.

Tech Giants Affected

The outage also impacted global customers of Microsoft’s Azure and Office365 services. Microsoft reported the issue around 18:00 ET on Thursday, stating they were “investigating an issue impacting users’ ability to access various Microsoft 365 apps and services.” They assured users of gradual relief as they worked to mitigate the issue.

Retail and Healthcare Sectors Hit

In the UK, supermarkets like Aldi, Morrison’s, and Waitrose experienced issues accepting card payments. The healthcare sector was also severely affected, with hospitals, pharmacies, and doctors’ surgeries reporting difficulties accessing medical records and managing staff rosters. Two German hospitals in Luebeck and Kiel had to cancel non-urgent surgeries.

The Root Cause: Crowdstrike’s Software Update

George Kurtz, CEO of Crowdstrike, confirmed on Friday that a “defect” in a content update for Windows was the cause of the outage. He clarified that Mac and Linux hosts were not affected and emphasized that this was not a security incident or cyberattack.

“Crowdstrike is actively working with customers impacted by a defect found in a single content update for Windows hosts,” Kurtz stated. “The issue has been identified, isolated, and a fix has been deployed.”

Crowdstrike advised customers to refer to its support portal for updates and to continue communicating with representatives through official channels. “Our team is fully mobilized to ensure the security and stability of Crowdstrike customers,” Kurtz concluded.

Speculations and User Reports

Initial reports on Friday speculated that an antivirus software update at Crowdstrike had malfunctioned, causing the outage. Data privacy expert Lauren Wills-Dixon commented on the incident, highlighting the reliance on certain technologies and the chaos that downtime can cause.

Devices, including computers and phones, became “bricked,” meaning they were rendered inoperable due to corrupted software. On Reddit, users on the Crowdstrike subreddit (r/crowdstrike) shared an advisory from the company, suggesting the Falcon Sensor was to blame. The advisory mentioned repeated BSODs (Blue Screen of Death) and reboot issues related to the Falcon Sensor.

Conclusion

This incident underscores the vulnerability of global operations to software defects and the critical importance of robust cybersecurity measures. As Crowdstrike works to resolve the issue, the broader implications for technology reliance and trust in security practices are brought to the forefront.