August 1, 2024 at 02:46PM CrowdStrike faces a federal lawsuit for failing to implement a phased approach in updating its software, causing a global outage detrimental to investors. The pension fund alleges that false claims about the reliability of CrowdStrike’s Falcon platform led to financial losses. Despite these challenges, CrowdStrike is working to restore affected … Read more
July 29, 2024 at 09:06AM Google apologized for an incident that affected its password manager for millions of Windows users, coinciding with Windows administrators mitigating the impact of a faulty CrowdStrike update. The issue, limited to Windows users on the M127 version of Chrome, prevented them from accessing saved passwords. The incident underscores the risks … Read more
July 29, 2024 at 02:39AM Microsoft acknowledges that its initial estimate of 8.5 million machines affected by CrowdStrike’s software update was likely underestimated. The incident response blog shared insights into the impact measurement process, stressing the limitations of crash reports. Microsoft outlined plans to reduce dependence on kernel drivers and enhance security in collaboration with … Read more
July 26, 2024 at 04:15AM CrowdStrike reported that over 97% of Windows computers affected by a bad update are back online. The incident is anticipated to result in significant direct losses for major companies. The cybersecurity firm has swiftly responded by restoring impacted systems, enhancing recovery efforts, and issuing warnings about cybercriminals taking advantage of … Read more
July 26, 2024 at 02:30AM CrowdStrike has detected an attempt by an unknown threat actor to distribute harmful installers to German customers after the Falcon Sensor update failure. The phishing campaign involves an impersonation website, fraudulent JavaScript, and malicious software disguised as a CrowdStrike Crash Reporter. This situation occurs as CrowdStrike works to recover from … Read more
July 25, 2024 at 04:56PM Cybercriminals are using last week’s CrowdStrike outage to launch social engineering attacks on the security vendor’s customers. These targeted phishing activities are more copious and focused than typical news-related attacks. The attackers masquerade as the company itself, technical support, or rival companies to gain access to affected organizations. They also … Read more
July 24, 2024 at 10:36AM CrowdStrike’s faulty security content configuration update for their Falcon sensor caused a global incident last Friday, impacting global IT teams, and disrupting business continuity. The update, designed to provide new security content to its software, triggered a Windows operating system crash. CrowdStrike released a preliminary Post Incident Review, apologized for … Read more
July 24, 2024 at 10:24AM CrowdStrike released a Preliminary Post Incident Review explaining that a faulty Falcon update caused millions of Windows systems to crash due to a bug in the Content Validator. The issue stemmed from a problematic content configuration meant to gather telemetry on new threat techniques. CrowdStrike acknowledged inadequate testing and is … Read more
July 24, 2024 at 05:27AM CrowdStrike attributed a widespread Windows outage to a faulty update to its Falcon platform. The update, including Rapid Response Content, led to crashes on Windows systems using sensor version 7.11 and above. CrowdStrike is enhancing its testing processes and error handling mechanisms to prevent future disruptions and plans to deploy … Read more
July 24, 2024 at 01:22AM CrowdStrike attributed last week’s mass crash to a bug in its own test software, Falcon Sensor. The incident report detailed the use of “Template Instances” to detect threats, and how a bug in the Content Validator resulted in a “dud” release, leading to a Windows OS crash on around 8.5 … Read more