Microsoft and CrowdStrike issue lead to the largest IT outage in history

Table of Contents

Unprecedented IT Outage Disrupts Global Businesses

On Friday, businesses worldwide faced a large-scale IT outage, affecting industries such as financial services, healthcare, and media. The aviation industry was hit hard, with flight cancellations, service delays, and airports scrambling to cope with the consequences. The widespread outage was triggered by recent technical issues at the cybersecurity giant CrowdStrike.

Root Cause: Security Company CrowdStrike's Update Issue

On Friday, CrowdStrike experienced a major system disruption due to recent software updates. CrowdStrike's CEO George Kurtz explained that the problem stemmed from a flaw in a Windows content update, clarifying that Mac and Linux systems were not affected. He emphasized that it was not a security vulnerability or a cyberattack, stating that "the issue has been identified, isolated, and solutions deployed."

Largest Outage in History: Banks, Airports Affected

Experts have stated that this could be the largest IT outage in history. Industries including banks, healthcare, and television broadcasting were impacted. The aviation industry suffered particularly severe consequences, with multiple reports of flight cancellations and service delays. Microsoft's cloud services also experienced interruptions but were restored later that day.

Event Center: What is CrowdStrike?

CrowdStrike is a renowned cybersecurity provider known for its endpoint security solutions, using cloud technology to protect network-connected devices. Many Fortune 500 companies, including major banks, healthcare, and energy firms, rely on CrowdStrike's software to detect and block network threats. The Falcon platform aimed at preventing network vulnerabilities was at the core of Friday's issue.

"Blue Screen of Death" (BSOD)

During the events on Friday, many users encountered the infamous "Blue Screen of Death" (BSOD) on their Windows devices. This error was caused by updates related to CrowdStrike's Falcon product. The update conflicted with Microsoft's Windows operating system, leading to widespread system crashes. Microsoft acknowledged the issue, stating that it began at UTC 7:00 PM on July 18 and confirmed that CrowdStrike had withdrawn the problematic update.

We're investigating an issue impacting users ability to access various Microsoft 365 apps and services. More info posted in the admin center under MO821132 and on https://t.co/W5Y8dAkjMk

— Microsoft 365 Status (@MSFT365Status) July 18, 2024

Web3 Seizes the Opportunity to Speak Out

Self-proclaimed cypherpunk opinions stated, "Maybe the solution to addressing weaknesses in critical infrastructure isn’t 'a single B2B SaaS company with core visitation privileges.'" SpaceX's cybersecurity personnel stated, "Third-party vendors will always be the weakest link, isolate critical systems." Their thoughts were also retweeted by Musk.

This is a wake up reminder that you shouldn’t have an internet connected privileged binary running on your production systems. What was a bad update could have easily been a massive adversary backdoor. A third party vendor will always be the weakest link. Isolate critical systems

— Christopher Stanley (@cstanley) July 19, 2024

Microsoft Stock Slightly Down, CrowdStrike Plummets