A significant IT outage affecting Microsoft’s Windows operating system has caused major disruptions worldwide, impacting banks, airports, TV stations, hotels, and numerous other businesses. The incident has led to flights being grounded, operations halted, and widespread confusion, as Windows machines globally have displayed the notorious Blue Screen of Death (BSOD).
Initial Reports and Global Impact of Microsoft Outage
The outage first became evident early Friday morning in Australia, where companies reported Windows devices displaying BSODs. Soon after, similar issues began surfacing across the globe, including in the UK, India, Germany, the Netherlands, and the US. Notably, Sky News in the UK went offline, and US airlines such as United, Delta, and American Airlines were forced to implement a “global ground stop” on flights.
The widespread Windows malfunction has been linked to a software update from cybersecurity firm CrowdStrike. While cybersecurity officials have stated that this issue is not related to a cyberattack, the problem appears to stem from a misconfigured or corrupted update released by CrowdStrike. The company has acknowledged the problem and is working to resolve it.
CrowdStrike engineers reported on the company’s Reddit forum that they have received numerous reports of BSODs occurring across Windows hosts due to the update. They are actively addressing the issue and have provided a workaround for affected systems through an advisory.
Limited Impact on Windows Devices
The outage seems to be confined to devices running Windows, with other operating systems such as Mac and Linux reportedly unaffected. The extent of the problem and the duration required for a full resolution remain unclear. Both Microsoft Outage and CrowdStrike have yet to respond to WIRED’s requests for further comment.
Hours after the disruption began, CrowdStrike CEO George Kurtz issued a statement addressing the situation. He confirmed that a “defect” in the Windows update was responsible for the Microsoft Outage issues. “This is not a security incident or cyberattack,” Kurtz assured. “The issue has been identified, isolated, and a fix has been deployed.” He also noted that Mac and Linux hosts are not affected by this update and directed customers to the company’s support portal for assistance.
Microsoft’s Response and Financial Impact
Microsoft has acknowledged the issue linked to Windows devices and anticipates that a resolution is imminent. The financial impact on organizations experiencing the outage could be substantial, with some estimates suggesting potential losses in the millions. Lukasz Olejnik, an independent cybersecurity consultant, indicated that the CrowdStrike update appears to be related to its Falcon Sensor product, which is designed to block attacks on systems.
“This situation highlights our dependence on IT and software,” Olejnik remarked. “When multiple software systems are managed by different vendors, they can become a single point of failure, as seen here.”
Effects on Public Services and Businesses
The disruption caused by the CrowdStrike update has had extensive repercussions on public services and businesses worldwide. Airports are facing delays and long queues, with passengers in India resorting to handwritten boarding passes. In the UK, NHS England confirmed that GP appointment and patient record systems have been impacted, and train operators have reported delays across the network.
CrowdStrike’s EDR Technology and Workarounds
CrowdStrike provides endpoint detection and response (EDR) services to over 24,000 global customers. This EDR technology, which scans thousands of endpoints such as computers, ATMs, and IoT devices for real-time threats, is central to many organizations’ cybersecurity strategies.
Cybersecurity researcher Kevin Beaumont shared on X that the CrowdStrike update appears to be improperly formatted, leading to system crashes. He further noted that, as of now, there is no automated fix available.
CrowdStrike’s director of overwatch, Brody Nisbet, also shared a workaround on X. The suggested fix involves booting Windows machines into safe mode, locating and deleting a specific file named “C-00000291*.sys,” and then rebooting the machine normally. Nisbet indicated that this workaround should help stabilize some devices between BSODs.
As the situation develops, organizations and individuals affected by the Microsoft outage will be closely monitoring for updates and solutions.
Also read: Cyber Pro magazine
