Microsoft system outages due to Crowdstrike software update

Background

The Cyber Security Authority (CSA) on Friday, July 19, 2024, observed reports of a global information technology (IT) outage affecting several organisations worldwide in various critical sectors including transportation, health, government, banking and finance. The issue has resulted in the IT systems of these organisations going offline thereby affecting their operations

Findings

The outage, which impacts systems running Microsoft’s Windows, has been attributed to a software update released by CrowdStrike; a cybersecurity firm whose Falcon Sensor Threat Monitoring software is used by several industries worldwide. CrowdStrike is now in the process of rolling back that software update globally. However, a workaround has been shared. Microsoft has also issued a statement indicating that it is investigating the incident and taking mitigating actions.

Impact

Impacted devices keep crashing and displaying the “Blue Screen of Death (BSOD)” error, affecting operations in the transportation, health, banking and finance sectors.

Recommendation

System owners that use CrowdStrike should refer to the CrowdStrike support portal for the latest software updates and workaround steps.

References

https://www.crowdstrike.com/blog/statement-on-windows-sensor-update/

Contact the Cyber Security Authority

The CSA has a 24-hour Cybersecurity/Cybercrime Incident Reporting Points of Contact (PoC) for reporting cybercrimes and for seeking guidance and assistance on online activities, Call or Text – 292, WhatsApp – 0501603111, Email – report@csa.gov.gh

Issued by Cyber Security Authority
July 19, 2024
Ref: CSA/CERT/TA/2024-07/03