CrowdStrike, the US-based cybersecurity firm, has officially disclosed the cause of the widespread tech outage that impacted several industries globally.
The cyber security company announced on Wednesday that a bug in its quality control mechanism led to the software update that caused computers to crash worldwide.
The outage, which occurred on Friday, was traced back to CrowdStrike’s Falcon Sensor, an advanced platform designed to protect systems from malicious software and hackers. The fault in the sensor forced computers running Microsoft’s Windows operating system to crash, displaying the infamous “Blue Screen of Death.”
Mac and Linux hosts are not impacted. Windows hosts which are brought online after 2024-07-19 0527 UTC will not be impacted. Windows hosts installed and provisioned after 2024-07-19 0527 UTC are not impacted.
CrowdStrike explained in a statement, “Due to a bug in the Content Validator, one of the two Template Instances passed validation despite containing problematic content data,” referring to the failure of an internal quality control mechanism that allowed the problematic data to bypass safety checks.
However, the company did not specify the nature of the content data or why it was problematic. A “Template Instance” is a set of instructions that guides the software on what threats to look for and how to respond.
In response to the incident, CrowdStrike has added a “new check” to its quality control process to prevent such issues from occurring again.
The full extent of the damage from the botched update is still being assessed. On Saturday, Microsoft reported that approximately 8.5 million Windows devices had been affected. The U.S. House of Representatives Homeland Security Committee has requested CrowdStrike CEO George Kurtz to testify regarding the incident.
Though CrowdStrike released information to fix the affected systems last week, experts noted that restoring them would take time due to the need for manually removing the flawed code.
CrowdStrike is operating normally, and this issue does not affect our Falcon platform systems. There is no impact to any protection if the Falcon sensor is installed. Falcon Complete and Falcon OverWatch services are not disrupted.
