A CrowdStrike update caused a major IT outage, affecting industries globally, including healthcare, airlines, and banking services.
What happened
A recent update from CrowdStrike, intended as a minor ‘content update,’ led to widespread IT outages globally. CrowdStrike's CEO, George Kurtz, stated the issue was a defect in the update and assured it was not a cyberattack. The update was not subjected to rigorous checks, which could explain how it slipped through and caused such extensive damage.
CrowdStrike has since confirmed the problem was identified and isolated, and a fix was deployed. Nonetheless, Microsoft users experienced an error screen in Windows, known as the ‘blue screen of death,’ causing disruptions across multiple sectors. Microsoft suggested restoring Windows 365 Cloud PCs to a prior state and reported successful recoveries after multiple virtual machine restarts.
The backstory
The incident follows major IT outages, like the 2017 cyberattacks affecting England’s National Health Service (NHS) and the 2021 Meta outage. However, the scope and impact of the CrowdStrike update have been unprecedented, involving global industries and services.
Going deeper
Affected systems include:
- IT service desks
- Transport booking systems
- Radiology reporting
- Rostering systems
- GP appointment booking/request systems
- Voice recognition software
- NHS App
Furthermore, several specific impacts have been reported:
- Alaska: Police have warned that the 911 system may be unavailable.
- Northern Ireland: The NHS has reported that two-thirds of GP practices have been affected, leaving them unable to access patient records, generate prescriptions, or view lab results.
- Global aviation: Approximately 1,400 flights have been canceled worldwide, with major disruptions in the US, Germany, and India.
What was said
CrowdStrike CEO George Kurtz stated, "We’re deeply sorry for the impact that we’ve caused to customers, travelers, and anyone affected by this, including our companies."
Microsoft acknowledged the issue on X, saying, " We're investigating an issue impacting users’ ability to access various Microsoft 365 apps and services."
In a statement to CBS News, Microsoft added, "Earlier today, a CrowdStrike update was responsible for bringing down a number of IT systems globally. We are actively supporting customers to assist in their recovery."
Furthermore, Melanie Pizzey, CEO of the Global Payroll Association, warned, "The outage could have serious implications for businesses, particularly those processing payroll weekly, potentially delaying pay for employees."
By the numbers
- CrowdStrike shares dropped by 15%, wiping out about $12.5 billion in value.
- 1,400 flights were canceled globally, with 512 in the US, 92 in Germany, and 56 in India.
- Two-thirds of GP practices in Northern Ireland are affected, impacting patient care and prescriptions.
Why it matters
This major outage demonstrates the global dependency on cybersecurity software and the far-reaching consequences of its failures. Cybersecurity failures affect the immediate functionality of IT systems and broader societal functions like healthcare, transportation, and financial services.
The bottom line
The global disruption caused by CrowdStrike's update shows major vulnerabilities in cybersecurity practices, like testing and software validation, where small changes can trigger large-scale outages.
As organizations work to recover and mitigate the effects, they must learn from this incident to enhance their response strategies and prevent such incidents from recurring.
FAQs
Did the CrowdStrike update affect healthcare systems?
Yes, the update impacted healthcare systems, including radiology reporting and patient appointment systems, affecting services such as prescriptions and patient records.
Furthermore, the disruption could have compromised access to protected health information (PHI).
Does cybersecurity impact HIPAA compliance?
HIPAA compliance requires effective cybersecurity, as it safeguards PHI from unauthorized access, breaches, and other security threats.
What should healthcare organizations do to protect against cybersecurity issues?
Healthcare organizations should regularly test their software, implement cybersecurity protocols, and have contingency plans to protect PHI and maintain HIPAA compliance.
Learn more: HIPAA Compliant Email: The Definitive Guide
