CrowdStrike: World’s biggest IT outage continues to cause global chaos
HTML-код
- Опубликовано: 4 сен 2024
- CrowdStrike, the cyber-security company that has acquired a certain infamy after admitting responsibility for the IT outage that has upended services across the globe, is warning of "bad actors" trying to take advantage of the chaos.
Cyber agencies in both the UK and Australia have urged people to be alert to fake emails or calls.
Meanwhile, transport and health systems have been badly hit, with travellers facing continued delays and cancellations.
This global internet outage is insane! All airlines grounded and i was stock the airport and even banks, media, and offices from the U.S. to Australia. How can CrowdStrike have such a monopoly that could help restore such a massive amount of tech?
It's pretty concerning. If they can fix this, what other control do they have over our infrastructure? or are we truly in the matrix?
Right? It makes you think about the stability of our systems. But hey, I barely spend time online. When I checked my portfolio with Desiree Ruth Hoffman, we were still in the greens. That’s been the case for 16 months straight!
Wow, really? I've seen the name Desiree Ruth Hoffman before but can't figure out where.
Probably from her forecast on Nvidia before the pump. But how are you in the greens with all the fluctuations due to the election and everything else? Can you share her strategy?
Honestly, just schedule a call with her. She has vast knowledge in finance and really knows how to navigate these times. I handed over my portfolio to her so I can focus on my family. These days, things just get scarier and scarier.
It actually made all of the computers safe and secure. Can’t attack a computer that doesn’t work.
Silver lining 😂
Brick = air-gap
A documentary is coming about the outage… however this one will be focusing mostly Down Under. This will also reignite the BSOD in funny places meme in many ways…
😂😂😂😂
well said
An expensive paperweight
I appreciated how the man said that the British Airways staff were not briefed, rather than blaming them for not having answers and solutions.
Satish airways;);)
One cyber secret firm managed to do more damage in one day than ever malicious hacker in the world combined could do in a decade
main thing is that SOC2 compliance badge that they charge 60k for!
This sounds like a good story for movie or even games. Cyberpunk 3.
@@k.vn.k I’d say more for a comedy show
A faulty update might be the narritive for this story, but it could very well be a new world cyber attack….
@@user-xw7he1qo1b Not impossible but there's no evidence yet. What is known is that the update was abnormal, as it was uploaded about an hour before scheduled update should have normally been. Reason for this will be eventually uncovered, as damages are not only limited to companies, but public and governments as well, so investigation goes official in this case. It's not unreasonable hypothesis that abnormal update could have been uploaded by bad actor. After all, we remember 2020 huge data breaches and cyber espionage mess. There was this whole Microsoft, CrowdStrike, SolarWinds exploit going on back then, where SUNBURST malware could be inserted to CrowdStrike Orion, and where attackers could infiltrate these companies' complete networks and steal tools and data, by leveraging administrations tools already present in those networks. Essentially attackers elevating themselves to system administrators.
One CS professor at Harvard said it best. It all comes down to economics. IT companies that cut spending on quality control can deploy buggy software to production. Just look at the quality control at Boeing. Airplane parts falling off during flights. Comes down to testing. Test, test, test, and test some more. I had a math professor in grad school from Czech Republic who was super smart. He had worked for IBM and tried to find bugs in their code and could never find any. With Microsoft code, he found bugs all the time.
The Y2K bug was only 24.7 years late
This is going to be the biggest tech lawsuit in history.
Sadly not. That would imply Product Liability and the US Congress in its infinitive Wisdom is shielding Companies from that.
Nah, companies shouldn’t rely on auto updates, when was the last time anyone did an audit on security features? Lawsuit to each company not crowdstrike
Not just lawsuit, it will wake people up from relying too much on cloud services. There will be new developments of local backup and services that separated companies away from fully intergrade their data fully to the cloud.
@@Koraeffectlol what are you talking? How should the company know that they don‘t test their updates before pushing them out? They have to rely on auto updates
@@Kraci1iusrespectfully, you have no idea what you're talking about.
For a company that's so much concerned about security. I am surprised why a Show Stopper level issue skipped a QA check. Why a soft-launch method is not a standard.
Which makes me think it was an inside job. No QA and sent out at the end of a working week? Smells a bit fishy to me…
I vaguely understand the terminoloy, but I guess you're talking rather standard procedures. Even I make sure I create a restore point and system backup before updates.
The WEF also correctly predicted this ahead of time maintaining that 100% correct prediction rate of bad things that happen from them....
Exactly this was the the supporting act - like virus practice before virus proper- dib dib dib - be prepared!!
This is a national security vulnerability for the state of the Commonwealth of Australia
This has highlighted a massive vulnerability in our society. Software that everything depends on should be as regulated as aviation - it’s bonkers to think that a “routine update” could cause such issues globally.
Something like this was bound to happen, and we were fortunate that people didn’t die as a result of emergency services or hospital software failing.
How do you know nobody died? You an oracle?
it is regulated
CrowdStrike is the technology that enterprises install to acheive their security reviews to even do business in regulated environments
@@jirikrajnak9047 Because a death associated with this outage would be heavily publicised. Or there was a death or close call but it hasn’t come to light yet.
@@BenjaminCordero Im aware of the services crowd strike provide. What I mean is it is not regulated in the same sense as aviation, pharmaceutical/med device manufacturing or health care. Source: Im a software engineer in a regulated environment (medical devices).
I'm going to hate Crowdstrike forever
Travel insurances are poor now.
😂
Staged updating is the answer, IT can do that, but there is a cost. So if you have 4 machines, 2 get updated on day 1, and the other 2 some days later. It doesn't even have to be said that much more thorough testing is needed, and Crowdstrike clearly didn't do enough testing. Microsoft also release buggy updates, and have bluescreened machines. Cylance, like Crowdstrike, also released a very buggy update some years ago, that caused a lot of problems - which drove many to Crowdstrike.
We really shouldn't rely on Microsoft for our global security when they can't even create a word processing program without it being riddled with bugs
When the world is built on a foundation of sand.
Its too late. Its now obvious how fragile our country is. This simply should have never happened when America claims to be the best in technology.😂
So an IT firm in Texas has a global effect hmmmmm
You'd be surprised how powerful programming really are. One line of wrong code shuts down the entire world
@@kaptenhiu5623it created a boot loop 😂
You'd be surprised how much power they have. They literally have kernel level access
Every System has to be checked manually and the list is long, it will take at least a week to get things up.
Watching this at home after our flight was cancelled, ruining our holiday today.
It’s out of their control they say, but they chose to use the software, so is.
This just shows how dependent we are to technology, one small mistake can cause such a major disaster.
it could have been much worse. the company also releases security products for other os types as well. so in one day it could have taken down both windows and linux, luckily it only happened to windows.
@@STCatchMeTRACjRochina and Russia are taking notes where to target the economies of countries
Unbelievable how such an untested software can get distributed globally causing so much damage
Well, that's happens when you put all your eggs in one basket. 😮
If a blue screen is an internet outage we are done for with a real outage
That was merely a disruption and a wake up call for you IT Admin
Pen and paper.
No back up plan 😂😂😂
The guy that messed up the code is gonna get a promotion.
If only the Internet would go down too lol
Screw that. Imagine a worldwide blackout that could last a year.
This is what I'm waiting for come 2030
Internet runs on Linux so it's unlikely to goes down.
That's coming....
nope, internet is massively running on linux, not some crappy OS designed for gaming
Sending an update without testing.
Problems are inevitable. Problems are soluble. David Deutsch.
i wonder how many lawsuits will be brought to the door of crowdstrike
Why would you ever have auto update enabled?
Crowdstrike really had us crowd strike
This could have easily avoided with robust testing protocols, testing updates before deploying them to a production environment, it's crucial to follow a systematic approach to ensure stability and minimize potential disruptions by cloning production networks and testing it before releasing.
As layman, this is our thinking as well.
Was not able to short Trump so they short the world instead.
They say this was NOT A HOSTILE ACT. Just how stupid this sounds and how stupid are the people that believe it!
People believing is a hostile act are stupidest since CEO of Crowdstrike himself said it was their fault
Could be a disgruntled employee..
@@nicejungle they deployed a corrupted sys file ffs
after listening to this GP run her mouth about cybersecurity, I would immediately drop her as my doctor. What else does she not know that she doesn't understand? b/c she hypes a non-existent threat from "hackers" when the real and only threat is from Microsoft and its vendors.
I think she was referring to start of the program where they said that scammers would take advantage of this outage
@@purpleowl2075 yeah. it's called capitalism. what % of those scammers are legal? btw, CrowdStryke was deeply involved in the scam that Trump is Putin's handpuppet that was shoved down all our throats by Congress and the media. Not Wall St's puppet, Putin's.
Security firms now know to better test there update first then send it. Crowdstrike is an example of when you have too much trust
Let’s also factor in how much carbon we’ve eliminated.
IT arrogance scents in the air. 🤭
What boggles the mind is why these critical systems ever need to be connected to the internet? If the systems need access for data it should go through a Proxy that is strictly controlled. For example the terminals at the airport that process the tickets those system should only be connected to a secure server via a proxy. Nothing else. Nobody is gonna be watching RUclips on those machines. So ya Crowdstrike gave every IT dept a wake up call on their practices.
At some point you would need to connect the internet for people to book flights without having to show up to the airport to schedule everything in person
It occurs to me that if hypothetically I wanted the power to to crash a large number of vital systems, I might make a company that legitimises itself to the corporate world as a security tool so as to get elevated privileges on a large number of systems and then at an opportune moment release a malicious update to crash them all at once. I might give the necessary shell company I would create to acheive this hack a really on the nose name, like CrowdStrike.
This was not a mistake
People will keep using that garbage operating system
6:10 It's not about money. It's about physics and the limits of nature. If it were meant for us to travel or communicate over vast distances in an instant, there would be provision in nature for us to. If not, no matter how much money you throw at it, it won't happen.
I am so glad I ordered my medication last week
I think the biggest problem. is that these airlines are just like well it not our fault so no you cant get any money back or credits
Get back to physical admin, stop putting all your infrastructure eggs in one basket.
CrowdStrike shares can drop further with many class auction lawsuits
poor sapiens ...how unfair IT !!!
You rely on one company and one country. That's what you get. This is a preview to what could happen during war.
What went wrong in CS process then? Didn't they test the patch/upgrade/etc before pushing it to their customers?
Back to pen and paper for docs I think
Always keep a paper print out of any critical things (Bank statement, airline ticket, medication, prescription, medical record, etc...)
Message seen shorty before computer crash:
"Please do not turn off your computer. Your system is being updated".
The Crowdstrike virus failed to crash a single Linux or Apple OS based computer system.
that was more luck when you take in count that Crowdstrike is also available for Linux and Apple OS.
That's coming. They have separate software for those systems. Don't be arrogant enough to think you're invulnerable.
@@pillettadoinswartsh4974 I can boot from a live USB stick and roll back any update. I had to do that a few months ago due to an bad email update.
How about compensation ? Oh, it’s an American company, No problem. 😂😂😂😂😂
For our safety we must remain at home and only buy from Walmart or Amazon
It was soooooo important it had to be secret so it could be incompetent.
Not "IT failure." It is Microsoft failure
Disagree with Jake Moore. It’s not for a vendor to dictate when companies protect themselves against zero day exploits by staggering releases.
It’s up to individual companies to decide how, when and even if they want to stagger it within their business, if their security policies allow it.
It’s not like picking a lane on the O365 update circuit.
I switched to Mac since windows vista
if you became a hacker coz you want to wreck havoc in this world.. you choose the wrong path..
ha, just one click away (or update) to shut the world down
What an amazing job at getting the fix out. Well done. This should have helped people realise their strengths and their personal vulnerabilities. This is a good challenge. Well done to those who realised what they had and needed to do. What they should prepare for in a more serious event. The business challenges Ie Doctors surgeries that need upgrades.
Prepare for the worst people and hope for the best. Always have some cash. some food and water and if you need medicines daily then have a small supply or at least copies of your scripts to hand.
Haven’t had a holiday in 3 years. Now this happens right as I’m supposed to leave?? NOPE!! Ruined my time off! I can’t get this time back!!!! Miserable Joje!!
Hah, got you beat there then. Was about to visit my mom overseas, since she will have a knee operation soon, and we wanted to enjoy the weather before the operation / revalidation starts. Flight was cancelled, but that is ok, since my mom's operation is now delayed. I did not get paid this week, since i am on a weekly payroll, and the cherry on this delicious pie is, i had to go back to work, so our team can reset about 1500 endpoints, all by hand, one by effing one, all weekend. Good news is we've perfected our workflow, and we get about 15 done per person, per hour. We expect to finish the job around tuesday, maybe monday night. Absolutely despressing sitting there like a sweatshop, trying to fix a massive issue that was so easily avoidable. Boss is also rethinking to not only get rid of Crowdshit, but Microsoft alltogether as well.
Very sorry to hear that 😢. Hope you can still find a way to enjoy the time off work. You didn't deserve that. What a mess it has caused.
The national security of states is entrusted to private companies. (Communications and transport pertain to national security)
Time to teach people how to do things in analogue, when systems currently automated go offline. Make people intelligent again!! LoL
It's past time. I remember 20 years ago standing in a store and the electricity grid went down which meant the checkout registers wouldn't work. The young lady behind the counter didn't know what to do. I had to show her how to use a calculator to add up my purchase and then tell her how to figure the tax and then because the register told her what change to return when being paid in cash I had to tell her how to do that too. The owner slightly older than me finally showed up and took over a second counter so some customers were able to leave relatively quickly. I stayed for two more customers when the young lady finally felt confident that she could do the figuring. And left, I sort of laughed to myself because my children were complaining that they couldn't use calculators until later in school but they found out that doing things by hand may be slow but it didn't need electricity. The only calculators that worked were the ones with solar or batteries.
Why did you export this with interlacing on?
So all GP surgery still going to be down Monday a&e it will be tomorrow for me
What is pen? What is paper?
I don't want to see the end of physical analogue currency and although I wouldn't say this occurence was a satisfying thing to see I do think it spells out that a tech reliant World can be an alarmingly problematic one.
Texas lawmakers let this happen. Prove me wrong.
Technology is good But Always keep a paper print out of any critical things (Bank statement, airline ticket, medication, prescription, medical record, etc...) Patients in the middle of surgeries. Doctors unable to see updated patient charts. Customers unable to Fly. Customers unable to withdrawal money or pay bills. Workers unable to work on their computers. Very dangerous indeed. As layman with no technical background, one would presume with any new "update" one would use it in a phased and with some test live systems before it is distributed to the masses. Would this not be possible with whatever this update was? Major systems seem to have been affected, critical systems like 911, medical databases, people's online bank account, airline ticketing system, people's home systems, etc,. This is very dangerous as who knows what else might be affected and further ramifications. There are already too many data breaches causing many Americans major financial issues/losses. Do Americans now need to be worried about IT companies causing issues with regular system updates? Were they using AI to do their updates? Where were the checks and balances; quality control? What else did this affect? Can they ensure it won't happen again?
😢 This is scary, on top of pandemics, climate change and wars
What scares me the most is I have a shadow man following me everywhere.😢
All caused from 1 simple microsoft update...
GOD BLESS THE UNITED STATES OF AMERICA, ONE ISSUE WITH OUR TECHNOLOGY LIKE INTERNET OR MICROSOFT THE WHOLE WORLD WILL SHUT DOWN, WOW.🇺🇸🇺🇸🇺🇸🇺🇸🇺🇸
Uff, i´m happy i kept my computer on. I will keep it on for the entire week
Phone zombies...they'll get there dopamine that way.👥
Think I'd be leery of flying since many planes use computers...
Not to mention all the pieces falling off them when they're flying...
This didn't just happen yesterday. Computers were shutting down since Tuesday over a 4 day period
Not really.
I haven't seen anything about that. You sure this is true?
Something is fishy here - we are not getting the whole story
Start your sto watch entering building. Every 24 hours = $1.4M Claiming False Imprisonment/Incarceration . Bill Microsoft.
sorry i unplugged it to charge my phone
We need CrowdStrike technology to roll out CBDC
my french burner pooted metal aye eye wings eye am WON
await infeerno door knocking
You trust you loose! It is a perfect demonstration how a state backed information terrorism could take place.
await infeeno door knocking
Consider crowdstrike bankrupt .
Wait 24 hours before applying an update. Let the rest of the world be your beta tester.
Why is it still working in Israel? Ask Elon musk?
will still trust the cloud ......
Sounds like a British Kermit 🐸
Madness, a company thtat protects company from breaches ironicly caused the world's largest it outage in history. Crowdstrike more no wisdom of the crowd.
I smell elon😂😂
Yeah… capitalist monopoly is great. Works great. Good thing Brazil doesn rely on this only one company,
Haha I'm laughing, Because my computer is just fine. staggered updates work a treat. And not keeping passwords on a bit locker
Internet 3.0 incoming :)
Apple Mac is fine 😂
LinuxOs problems free
You know who is in your waiting room by physically walking out and asking their name. You as a hospital are required to have manual paper records as well & back up emergency systems. You have paper ways of functioning perfectly fine without your computer. That is so rediculous. And negligent. Use your brain & just switch to a non computerized manual way to handle the day. Those of us who live rurally deal with power outages and internet being down all the time. We prepare for that eventuality & were around before all this tech existed. It is absolutely rediculous stupidity that people freak out and can't adapt quickly to a system outage. It is not a big deal.
You really don’t know what happens behinds the scenes do you .
@@mayaali3721 I do actually. But if you would try to discount my statement again go ahead.
@@mysticmoontree there
Turn auto update off 🤦🏽♀️
I keep getting old news