“CrowdStrike is actively working with customers affected by the vulnerability found in Single Content Update for Windows hosts. Mac and Linux hosts are not affected,” said CEO George Kurtz. Report on X.
“This is not a security incident or cyber attack. The problem was identified, isolated and a fix applied.”
Customers should check the support portal for the latest updates and work with their CrowdStrike representatives through official channels, he said.
“Our team is fully mobilized to ensure the security and stability of CrowdStrike customers,” he added.
The confirmation comes after widespread reports of technical issues with many Microsoft users around the world facing the so-called “blue screen of death” error screen.
Many businesses were affected, including airlines, banks, telecommunications companies and banks.
American Airlines, which describes itself as the world’s largest airline, said a technical problem was affecting “several carriers”, while the Dutch unit of Air France-KLM said it was “forced to suspend most” of its operations.
Meanwhile, Spain’s airport authority AENA warned that passengers could expect delays “A computer system incident,” and UK airline Ryanair said the disruption was the result of a third-party IT outage and advised passengers to arrive at the airport at least three hours before their scheduled departure time.
Beyond the travel industry, banks and financial institutions around the world have reported problems, with the London Stock Exchange reporting problems with its data and news platforms.
German financial firm Allianz is “experiencing a major outage affecting the ability of employees to log into their computers. It affects many companies besides Allianz, notably affecting Windows login and caused by an incident at our provider CrowdStrike.”
A Visa spokesperson said that while the ability to pay was not affected, “we are aware of reports of people not being able to make payments, and we work with our financial institution customers to understand any impact on their services to cardholders and merchants.”
NBC Universal was also affected by the CrowdStrike outage.
Check here for the latest updates on which companies are affected.
Omer Grossman, CIO of cybersecurity firm CyberArk, said the damage from the outage would be “dramatic.”
“The flaw was caused by a software update to CrowdStrike’s EDR product, a product that runs with elevated privileges to protect endpoints. As we see in the current incident, a flaw in this can cause an operating system crash.” He said in an email comment.
According to Grossman, getting back online isn’t easy.
“As endpoints are down – the blue screen of death – they cannot be remotely refreshed, and this issue must be resolved manually, endpoint by endpoint. This is expected to take days,” he added. .
This is an important message. Update for updates.
