CrowdStrike customers experienced a large-scale outage on Friday, July 19 due to an issue in a routine content update deployed overnight. The content update glitch has affected millions of Microsoft Windows systems, rendering them inoperable until a fix is executed manually on each system.
CrowdStrike continues to develop and refine technical remediation guidance, which is posted on their website. Our teams have studied this guidance, are currently working with several clients that utilize CrowdStrike software to remedy their specific situations and are prepared to assist others in their recovery efforts onsite or remotely as needed.
Our experts continue to monitor the situation and have highlighted the following areas:
Despite the non-malicious nature of the outage, threat actors are attempting to exploit the situation. Kroll’s Threat Intelligence analysts have observed phishing and social engineering campaigns leveraging the disruption. Organizations should remain vigilant and consult their cybersecurity teams if they encounter suspicious activity.
- Complexity and Mitigation
Software update failures are nothing new – they will happen. At the same time, our…
