As losses mount, CrowdStrike says bug in quality-control process led to botched update

Published 07/24/2024, 06:44 AM
Updated 07/24/2024, 04:01 PM
© Reuters. FILE PHOTO: United Airlines employees wait by a departures monitor displaying a blue error screen, also known as the “Blue Screen of Death” inside Terminal C in Newark International Airport, after United Airlines and other airlines grounded flights du
MSFT
-
CRWD
-

By James Pearson

LONDON (Reuters) -A software bug in CrowdStrike (NASDAQ:CRWD)'s quality-control system caused the software update that crashed computers globally last week, the U.S. firm said on Wednesday, as losses mount following the outage which disrupted services from aviation to banking.

The extent of the damage from the botched update is still being assessed. On Saturday, Microsoft (NASDAQ:MSFT) said about 8.5 million Windows devices had been affected, and the U.S. House of Representatives Homeland Security Committee has sent a letter to CrowdStrike CEO George Kurtz asking him to testify.

The financial cost was also starting to come into focus on Wednesday. Insurer Parametrix said U.S. Fortune 500 companies, excluding Microsoft, will face $5.4 billion in losses as a result of the outage, and Malaysia's digital minister called on CrowdStrike and Microsoft to consider compensating affected companies.

The outage happened because CrowdStrike's Falcon, an advanced platform that protects systems from malicious software and hackers, contained a fault that forced computers running Microsoft's Windows operating system to crash and show the "Blue Screen of Death".

"Due to a bug in the Content Validator, one of the two Template Instances passed validation despite containing problematic content data," CrowdStrike said in a statement, referring to the failure of an internal quality control mechanism that allowed the problematic data to slip through the company's own safety checks.

There is no sign Microsoft plans to limit CrowdStrike's access to the Windows operating system in the wake of the outage, a person familiar with the issue said on Wednesday.

CrowdStrike did not say what that content data was, nor why it was problematic. A "Template Instance" is a set of instructions that guides the software on what threats to look for and how to respond. CrowdStrike said it had added a "new check" to its quality control process in a bid to prevent the issue from occurring again.

CrowdStrike released information to fix affected systems last week, but experts said getting them back online would take time as it required manually weeding out the flawed code.

© Reuters. FILE PHOTO: United Airlines employees wait by a departures monitor displaying a blue error screen, also known as the “Blue Screen of Death” inside Terminal C in Newark International Airport, after United Airlines and other airlines grounded flights due to a worldwide tech outage caused by an update to CrowdStrike's

Wednesday's statement was in line with a widely held assessment from cybersecurity experts that something in CrowdStrike's quality control process had gone badly wrong.

The incident has also raised concerns among experts that many organisations are not well-prepared to implement contingency plans when a single point of failure such as an IT system, or a piece of software within it, goes down.  

Latest comments

Risk Disclosure: Trading in financial instruments and/or cryptocurrencies involves high risks including the risk of losing some, or all, of your investment amount, and may not be suitable for all investors. Prices of cryptocurrencies are extremely volatile and may be affected by external factors such as financial, regulatory or political events. Trading on margin increases the financial risks.
Before deciding to trade in financial instrument or cryptocurrencies you should be fully informed of the risks and costs associated with trading the financial markets, carefully consider your investment objectives, level of experience, and risk appetite, and seek professional advice where needed.
Fusion Media would like to remind you that the data contained in this website is not necessarily real-time nor accurate. The data and prices on the website are not necessarily provided by any market or exchange, but may be provided by market makers, and so prices may not be accurate and may differ from the actual price at any given market, meaning prices are indicative and not appropriate for trading purposes. Fusion Media and any provider of the data contained in this website will not accept liability for any loss or damage as a result of your trading, or your reliance on the information contained within this website.
It is prohibited to use, store, reproduce, display, modify, transmit or distribute the data contained in this website without the explicit prior written permission of Fusion Media and/or the data provider. All intellectual property rights are reserved by the providers and/or the exchange providing the data contained in this website.
Fusion Media may be compensated by the advertisers that appear on the website, based on your interaction with the advertisements or advertisers.
© 2007-2025 - Fusion Media Limited. All Rights Reserved.