Despite the bug fix, CrowdStrike and Microsoft continue to deal with residual effects.
This Friday (19), a global technological blackout caused disruptions in several parts of the world, including Brazil. In the morning, the Microsoft issued a statement saying computers were impacted by a flaw in the system of CrowdStrike, a cybersecurity company. Despite the patching of the flaw, Office 365 applications and other services are still suffering from residual impacts.
According to Reuters, the technical issue was caused by the Falcon security tool, which is used to detect and monitor intrusions. George Kurtz, CEO of CrowdStrike, said that it was not a security incident or cyberattack, but rather a defect in a content update.
Operations have been suspended around the world. Flights at Sydney Airport in Australia were unable to take off. US carriers such as Delta and United Airlines also suspended flights, and airports in India faced similar problems. In the UK, the London Stock Exchange went out of service, Sky News went off the air, train services were suspended and airports reported delays. In France, the organizing committee for the Paris Olympic Games begins to face IT problems a week before the start of the competitions. In Alaska, police reported that there was a blackout on the 911 emergency telephone lines.
In Brazil, several banking applications, such as Bradesco, NubankNeon and Next, faced instability, with users complaining about login and payment problems. Banking services were down, causing inconvenience for customers.
Kevin Reed, Chief Information Security Officer at Acronis, stressed the importance of rigorous testing and gradual updates.
“CrowdStrike’s recent outage appears to be the result of a bug in its EDR agent, which unfortunately was not fully tested. This resulted in widespread disruption, with many installations affected globally. The faulty update requires manual intervention to resolve, specifically by rebooting systems into ‘safe mode’ and deleting the faulty driver file. This process is cumbersome and leaves systems vulnerable in the interim, potentially leading to criminal attacks,” the director explained.
Microsoft said it has identified and fixed the issue, but said the issues may persist for a few hours. The company is migrating its operations due to the issues with its services.
The flaw in CrowdStrike’s Falcon Sensor software, which affected Azure, Microsoft’s cloud computing platform, caused instability in applications such as Teams and PowerBI, resulting in the dreaded “blue screen of death” in Windows.
CrowdStrike’s CEO reiterated that the breach is not a cyberattack. The company is working to ensure the security and stability of affected customers.
“CrowdStrike is actively working with customers affected by a defect found in a single content update for Windows hosts. Mac and Linux hosts are not affected. This is not a security incident or cyberattack. The issue has been identified, isolated, and a fix has been deployed. We direct customers to the support portal for the latest updates and will continue to provide ongoing, comprehensive updates on our website. We also encourage organizations to ensure communication with CrowdStrike representatives through official channels. Our team is fully mobilized to ensure the security and stability of CrowdStrike customers,” Kurtz shared on his official X (Twitter) account.
*Capa photo: iStock
Follow ADNews on Instagram e LinkedIn.
#ADDSomethingNew #ADNewsOficial #ADGroupBR
