Go Back

Crowdstrike Update Outage: What we know

Share:

Muli Motola

Chief Evangelist

Microsoft outages caused by CrowdStrike software glitch

The interdependence of modern society on technology was starkly highlighted when a critical update from Crowdstrike inadvertently led to widespread disruptions.

In an increasingly digital world, the profound impact of a single point of failure cascades through every facet of our lives. From how we fly to how we save, the Crowdstrike update outage unveiled vulnerabilities in our interconnected systems.

This article delves into the domino effect of the outage across various sectors, spotlighting the areas of aviation, banking, healthcare, media, emergency services, the stock exchange, and even electoral processes. It will align the puzzle pieces laid out by disrupted systems to frame a comprehensive picture of the incident’s implications.

Impact on Airlines

The aviation industry experienced significant disruptions when major airlines including Delta Air Lines, United Airlines, American Airlines, and Allegiant faced grounding due to a computing outage. This disruption was attributed to an issue with the cybersecurity firm CrowdStrike, which provides cybersecurity software and services to various industry sectors.

Not isolated to the United States, the outage cast a wide net of chaos, affecting airlines across the globe with images emerging of halted operations and long waiting lines. Major international air hubs in the UK, Germany, India, Hong Kong, Thailand, and Kenya were not spared, with some being forced to revert to the painstaking process of manual check-ins.

This systemic failure echoes previous incidents, such as when Southwest Airlines grappled with over 2,000 delayed or canceled flights during a technology outage. Such setbacks demonstrate the fragility of aviation operations in the face of technological disruptions. It’s pertinent that companies across all sectors, including airlines, invest in cyber resilience to mitigate the impact of IT outages and secure operations against vulnerabilities in software updates and cloud services.

Delayed flights

The ripple effect of the CrowdStrike update issue was immediately felt by passengers, with major carriers such as American, United, and Delta Airlines forced to ground flights, resulting in widespread delays. Airport scenes were marked by frustrated travelers, stalled check-in lines, boarding delays, and baggage system interruptions. Several airports, in an attempt to manage the crisis, resorted to archaic yet reliable manual procedures, including handwritten boarding passes.

The punctuality of services at Amsterdam Airport Schiphol slid down, with approximately 25% of flights taking off later than scheduled. Airports such as those in Hong Kong, Amsterdam, and Baltimore were scenes of extended queues, revealing the far-reaching effects of the tech outages. Such widespread disruption underscores the need for ongoing investments in cyber resilience to ensure continuous updates are managed effectively and do not result in blue screens of operational paralysis.

Cancelations

In a more dire series of events, over 1,800 flights in, into, or out of the U.S. met with cancellation one Friday morning due to the global tech outage. Flightaware, a real-time flight tracking service, logged upward of 5,000 flight delays that accompanied the cancelations. The issue stemmed from what was labeled a ‘bad update’ from CrowdStrike, forcing heavyweights in the airline industry such as American Airlines, Delta Air Lines, and United Airlines to pause many of their scheduled departures.

International passengers were not spared, as seen with the cancelation of an American Airlines flight from Japan to New York, leaving travelers like Patricia Sweeney stranded. The ripple effects of the outage extended beyond the airline sector, affecting critical infrastructure and services including the London Stock Exchange, major financial institutions, media houses like Sky News, and even government agencies, painting a picture of the overarching importance of reliable cybersecurity and software resilience.

Impact on Banks

The CrowdStrike software outage, caused by a flawed software update, had sweeping implications for the banking sector.

Major banks across the globe, including prominent Australian financial institutions like NAB, Commonwealth, and Bendogo, were caught in this digital maelstrom. The disruption extended to airlines like Virgin Australia and Qantas, further hampering the travel industry already grappling with the compounding isuse of flight cancellations. This wide-reaching technology outage demonstrates the interconnected nature of modern industries and further escalates the concerns regarding the reliability of critical cybersecurity infrastructure.

Financial services, often at the forefront of technology adoption, experienced considerable setbacks. Online banking services, which millions rely on for daily transactions, faced significant interruptions directly attributed to the CrowdStrike Falcon Sensor update malfunction. The glitch brought not only discomfort to customers but also a tangible monetary impact to CrowdStrike itself, as the cybersecurity firm’s shares plummeted nearly 15% at market open, resulting in a staggering $12.5 billion loss in market value.

Online banking disruptions

Echoing the unrest in the financial sector, TD Bank, the 10th largest bank in the U.S., found its customers locked out of online accounts, unable to perform routine financial operations. This disruption extended to court systems in locations such as Philadelphia and Maryland, which were forced to temporarily close to the public. The CrowdStrike-induced outage hindered a range of critical services, including emergency 911 centers, hospitals, and public safety agencies, with Oregon reporting severe impacts.

Efforts to restore online banking and other systems are underway, with dedicated teams at TD Bank and other affected institutions working around the clock. The incident spotlights the critical importance of cybersecurity software in maintaining not only the security but also the very operational framework of our digital-dependent society. It’s a stark reminder of how a single point of failure within our increasingly interconnected systems can lead to far-reaching consequences.

ATM outages

The CrowdStrike update fiasco did not spare automated teller machines (ATMs), which are vital for daily cash transactions for millions. The erroneous software update precipitated a cascade of IT issues that disrupted ATM services, leading to noticeable outages.

Financial entities faced this daunting challenge, needing to swiftly respond to restore services and reassure customers.

Major Bank

ATM Service Disruption

NAB

Yes

Commonwealth

Yes

Bendigo

Yes

TD Bank

Yes

Virgin Australia

Associated Disruptions

As shown in the table, the extent of ATM outages was both wide and unwieldy, leaving customers temporarily without access to crucial cash withdrawal and deposit facilities. The situation illuminated the profound implications such a “bad update” can have sector by sector, reinforcing the need for “continuous updates” and rigorous testing of security software to avert such widespread outages.

Impact on Hospitals

The CrowdStrike update IT outage wreaked havoc far beyond the financial sector, severely affecting healthcare facilities nationwide.

As reports surfaced, it became clear that the ripple effect of the IT disruption had reached critical services, including hospitals. Mass General Brigham in Boston, Cincinnati Children’s Hospital Medical Center in Ohio, and healthcare providers within the Catholic Health system all reported disruptions. In the face of this digital turmoil, the U.S. Department of Health and Human Services responded by issuing an alert, emphasizing the gravity of the situation and the potential impact on hospital operations.

Although some healthcare institutions managed to keep their doors open for patients, the disruption was palpable, underlining the vulnerability of even the most essential services to cyber incidents.

Delayed surgeries

The repercussions of the IT outage in the healthcare sector were most acutely felt through delayed and canceled surgeries.

Renowned facilities like Mass General Brigham and Cincinnati Children’s Hospital Medical Center were forced to postpone elective surgeries, directly affecting patient care schedules.
Elsewhere, the Catholic Health system navigated similar outages while striving to maintain open hospitals and medical practices. In Germany, elective surgeries were canceled, although critically necessary emergency care remained available. Even healthcare providers in the UK weren’t spared; they were pushed to resort to pen-and-paper record-keeping and prioritize only urgent cases, testament to the global scale of the CrowdStrike-induced IT issue.

Reports streamed in from across the United States, painting a picture of widespread healthcare disruption, with elective procedures and outpatient care falling victim to unforeseen delays.

Disrupted patient records

Digital healthcare operations faced a stumbling block as general practitioners in England and Northern Ireland grappled with the loss of access to digital patient records, directly affecting test results and bookings.

The electronic prescription system’s collapse forced GP practices to revert to handwritten prescriptions, shifting the burden onto pharmacists and exacerbating the strain already present on the healthcare system. The harried drafting of written prescriptions became a temporary norm as this dramatic turn of events unfolded. Although hospitals were able to maintain urgent and emergency services, the disruption in administrative IT functions like staff rostering laid bare the extent to which modern medicine relies on cyber-infrastructure.

In the wake of the CrowdStrike update-induced outages, the healthcare sector faced a stark reminder of its dependence on technology — a dependence that, when disrupted, can have immediate and tangible effects on patient care and service continuity.

Impact on Media Outlets

The tech landscape faced a significant jolt as a defective update from cybersecurity firm CrowdStrike inadvertently caused a global tech outage that ricocheted through multiple facets of everyday functions, ruffling the feathers of media outlets among others. Renowned broadcasters and journalistic pillars found their digital infrastructure compromised due to issues arising in Microsoft’s platforms, closely tied to the CrowdStrike update. The malfunction introduced an unforeseen pause in the normally ceaseless world of news, hindering both the conveyance and receipt of information.

Major media entities felt the pinch as the cascade effect of the tech disruption tampered with their broadcasting capacities. Journalists, those dedicated purveyors of news, faced an uphill battle, their routines disrupted, and their publishing schedules derailed by the sudden onset of technical difficulties. The outage did not discriminate, as large-scale media outlets, synonymous with reliability and global reach, grappled with the same gnawing issues that rattled smaller organizations, spotlighting the far-reaching impact of cybersecurity on modern media operations.

The ramifications of CrowdStrike’s faulty update underscored a sobering reality—today’s media landscape is inextricably woven with the threads of complex digital systems. The evidence of interdependence has never been clearer as the outage unraveled the cord of seamless broadcast and publication, revealing vulnerabilities within the nexus of current day cybersecurity and digital resilience strategies.

Inability to publish news stories

With the cornerstone of journalistic enterprise undermined by the CrowdStrike incident, ripples were felt far and wide. The London Stock Exchange’s RNS corporate news service reported a halt in their ability to disseminate announcements, attributing the issue to a third-party technical fault of global proportions. In Australia, a continent already familiar with the challenges posed by vast distances, the blow was particularly sharp; industry titans, from banks to airlines, found themselves in tumult, and media staples like ABC and Sky News Australia faced unexpected silence as broadcasts were interrupted and online publishing stalled.

In England, the reverberations touched the very pulse of healthcare, with general practitioners citing considerable struggles in managing patient systems—a sentiment echoed by healthcare providers across the globe, with Massachusetts-based hospitals postponing elective care amidst the digital turmoil. The cybersecurity firm, embroiled in rectifying the root cause of these maladies, suggested that their software bug had been addressed, shifting the battle to a new front: manual reboots.

This laborious task of restoring functionality to each compromised Microsoft computer presents an immense undertaking, indicative of the scale at which news publication was hindered.

Technical difficulties in broadcasting

The tendrils of the CrowdStrike outage failed to spare the broadcasters who experienced on-air disruptions, some plunging into periods of darkness where informative voices would normally resonate. From the bustle of international newsrooms to the community-level broadcast stations, connectivity issues and service interruptions wrote a day’s script fraught with silence and static. Radio waves and digital feeds, the lifeblood of a well-informed populace, trembled under the weight of a flawed software update, throwing schedules and programming into disarray.

Impact on Emergency Services

The recent CrowdStrike software update incident had severe repercussions on emergency services across various states.

Alaska State Troopers faced a dire situation when they reported statewide 911 service disruptions. At the heart of these issues lay the outage caused by the cyber firm’s faulty software update. Likewise, the Oregon Department of Emergency Management experienced significant challenges across vital domains including 911 centers, hospitals, airports, public safety, and emergency management agencies.

To counter these effects, emergency services in Oregon responded with alacrity, swiftly applying the remedial measures provided by CrowdStrike to restore functionality to these critical systems. In other regions, such as Philadelphia and Maryland, the court systems had to shut their doors to the public during the outage, impeding public access to justice. Fortunately, statewide alert systems and public safety incident tracking systems largely weathered the storm, with only minor impacts as confirmed by departmental spokespeople in Oregon.

Slow response times

The aftereffects of the recent outage have manifested in the form of slow response times, even after CrowdStrike’s software bug was addressed. The labor-intensive requirement for manual rebooting of each affected Microsoft computer across multiple sectors will undoubtedly stretch over a considerable time frame. Elective surgeries in Germany have been postponed, and in the U.K., healthcare professionals are grappling with delayed access to their online booking systems. U.K. pharmacies also report disturbances in prescription access and medicine deliveries, further stressing healthcare services.

CrowdStrike’s amendments have commenced, yet as Omer Grossman, a Chief Information Officer, indicates, delays continue to impede resolution, particularly within Endpoint Detection and Response (EDR) product spheres. Such lag is mirrored in the logistics industry, with entities like FedEx enacting emergency plans to curb the drag on package deliveries, underscoring the extent to which slow response times can ripple across global operations.

Difficulty in coordinating rescue efforts

Tracing the repercussions of the CrowdStrike-induced outage, a spotlight shines on the crippling effects on U.S. emergency response mechanisms, with 911 services suffering outages in several states. Hospitals, already stretched with pandemic pressures, were compelled to cancel non-critical surgeries, putting extra strain on healthcare systems worldwide. Additionally, the outage forced many state and municipal court systems to close for the day, resulting in postponement or cancellation of legal procedures.

Pertinently, the US Emergency Alert System reported difficulties in streamlining rescue operations. While some emergency services remained unaffected, others were mired in challenges such as retrieving medical records and maintaining uninterrupted patient care. These disruptions revealed vulnerabilities and the urgent need for reinforced cyber resilience among emergency response infrastructures.

Impact on the New York Stock Exchange

The CrowdStrike outage rippled through various sectors, yet the New York Stock Exchange (NYSE) stood as a beacon of resilience amid global IT turbulence. The exchange confirmed that its trading operations were fully functional, indicating that markets maintained their integrity and availability for investors despite the widescale interruptions. Regulatory news services experienced disturbances; nonetheless, the NYSE articulated confidence in their systems, assuring stakeholders of a normal opening and continuous trading activities. The commitment to cybersecurity resilience ensured that the fundamental processes of the financial hub were safeguarded during the crisis.

Other facets of the supply chain, however, were less fortunate.

Delivery companies like FedEx foresaw delays in their services, attributing potential lags to the software outages at a critical third-party vendor. In the U.K., pharmacists faced difficulties in processing prescriptions and ensuring the timely distribution of medicines—a consequence that echoed the dependency of modern logistics on robust IT frameworks. Similarly, reports from Germany highlighted the cancellation of elective surgeries, casting light on the global reach of the CrowdStrike outage and its sweeping effects on services and sectors beyond the financial domain.

Trading disruptions

The financial sector felt the tremors of the outage, with TD Bank customers in the United States experiencing disruptions when trying to access their online accounts, inciting a flurry of complaints across social media platforms. The issues extended across the Atlantic, as the London Stock Exchange encountered impediments in its RNS corporate news service, compromising its ability to share timely updates—a critical service in the high-stakes world of finance.

Norway’s central bank faced its own challenges, as the technical issues led to an unusual approach during a securities auction—participants were pressed to submit bids manually via phone or email. However, they managed to overcome the hurdles swiftly, minimizing the impact of the outage.

Global travel also suffered, with reports detailing thousands of flight cancellations and delays across various countries, underscoring the widespread nature of the outage. Despite this, by the afternoon, a semblance of normalcy began to emerge as key financial institutions, including the Bank of England and the European Central Bank, reported operations proceeding as usual, showcasing the importance of cyber resilience and adaptable crisis management plans in maintaining sector stability.

Investor panic

The cybersecurity sphere was thrust into the spotlight as the defective update from CrowdStrike unleashed chaos, triggering significant disruptions on Microsoft’s platforms—affecting a cornucopia of critical services from major banks to airlines, and from media outlets to government agencies. This chain reaction intensified investor concerns, translating into a palpable anxiety within the financial markets.

Microsoft Azure, a keystone cloud platform utilized by the majority of Fortune 500 companies, was heavily affected, with the disruptions casting doubts on the reliability of such integral cloud services. Despite tireless efforts to rectify the issues, the persistence of the outage’s effects left many businesses in limbo and sustained investor unease regarding the full scope and lasting impact of the disruption.

CrowdStrike’s shares bore the brunt of investor trepidation, with its valuation plummeting by over 10% in the trading sessions following the incident. This stark decline mirrored the gravity of the situation, as stakeholders questioned the resilience and countermeasure strategies against such cyber incidents. The resultant investor panic underscored the tightly interwoven nature of technology and market confidence, where a single software lapse can shake the very foundations of global financial stability.

Efforts to Fix The Issue

CrowdStrike swiftly identified and addressed the flaw that triggered the widespread IT outages stemming from their Falcon Sensor product’s software update. However, the fix’s deployment hasn’t instantly reversed the predicament for all businesses, as some continue to reel from the aftermath of the disruption. The nature of the malfunction suggests a potential need for manual intervention to restore each endpoint—a process that could extend over several days. In an attempt to expedite the recovery, CrowdStrike CEO advised that a simple reboot of the affected computers or servers might suffice for system recovery, although the full extent of the resolution remains to be seen.

The far-reaching impact of this outage was underscored by a Tenable senior staff researcher, who described the event as unprecedented in scale. The rippling effects have been felt across different industries, highlighting how deeply integrated CrowdStrike’s cybersecurity solutions are in global IT infrastructures.

CrowdStrike response

In response to the outbreak of IT outages, CrowdStrike has earnestly acknowledged the issues stemming from the defect in their Falcon Sensor’s single content update. Distinct from a security incident or cyberattack, the catalyst was purely an error within the software update itself. Recognizing the complexity and potential longevity of the problem, the cybersecurity firm has already deployed a corrective update, although some systems may still face extended downtimes into the weekend or the following week.

CEO George Kurtz has openly expressed that there is no instant panacea—some systems could require more time to bounce back fully from the software update’s adverse effects. However, CrowdStrike remains committed to actively supporting their clientele across various impacted sectors—including banking, airlines, and government agencies—in their system restoration efforts.

Collaborative efforts with affected industries

In the aftermath of the CrowdStrike-induced tech outages, the Cybersecurity and Infrastructure Security Agency (CISA) has been actively cooperating with the cybersecurity firm. Together, they are assessing impacts and bolstering remediation endeavors. While basic services such as major grocery store chains and public transit systems in the U.S. report being largely unscathed, more critical operations, notably in healthcare, have suffered. Several hospitals across the globe were forced to postpone elective surgeries, exemplifying the severity of the situation.

Furthermore, the sprawling effect touched a range of major businesses—from airlines to media outlets—dealing with the ongoing issues spawned by the flawed update. In light of the situation’s gravity, White House officials and President Biden have been receiving continuous updates and are engaged in discussions regarding target-specific resolutions for the array of impacted entities.

Uncertainty Regarding Extent and Duration of Outages

The recent global IT meltdown has caused upheaval in various sectors, bringing to light the critical need for cyber resilience. While emergency communication systems in major cities remained intact, the extent of the IT disruptions varied, with their duration sparking widespread uncertainty.

Airports from Hong Kong to India were forced to revert to manual check-ins, a clear indication of how technology outages can reverberate through the travel industry. Such incidences underscore the importance of having resilient backup systems and sector by sector updates to manage and mitigate the risks of tech outages.

Government agencies weren’t spared either. The Department of Motor Vehicles in states like Georgia, Ohio, and Indiana reported disruptions, with some anticipating further outages. This situation demonstrated the vulnerabilities within government operational frameworks when faced with technology outages.

Officials from both Australian and British governments have dismissed the likelihood of foul play, reducing concerns over a cybersecurity incident. However, as the situation evolves, continuous updates are essential to assess the impact and recover effectively.

The current state of affairs accentuates the need for robust cybersecurity software, proactive security measures, and a strategy for resilience in the face of unforeseen technology outages.

Ensuring Cyber Resilience with Acsense

The CrowdStrike update outage serves as a stark reminder of the critical importance of cyber resilience.

Organizations must be prepared to handle unexpected disruptions and maintain operational continuity. At Acsense, we understand the complexities and challenges that come with ensuring robust cyber resilience.

Our commitment is to help businesses fortify their IT environments against unforeseen incidents. By focusing on continuous improvement and strategic planning, we aim to provide a secure and resilient infrastructure for our clients. Explore how Acsense can support your organization in building a stronger, more resilient IT framework.

Visit our website or contact our team to learn more about our approach to cyber resilience.

—–

P.S

 

Looking to stay in the loop on the latest IAM trends and updates?

 

Subscribe to the FiveNines IAM newsletter today and gain access to exclusive insights from industry leaders, groundbreaking companies, and global news outlets. Don’t miss out on the must-read monthly newsletter that delivers the juiciest edition yet of IAM resilience.

 

Subscribe on Linkedin now and stay ahead of the curve!

Scroll to Top
Skip to content