Translate

25 July 2024

CrowdStrike says bug in quality control process led to botched update

 CrowdStrike says bug in quality control process led to botched update

Reuters

24/07/2024 CrowdStrike says bug in quality control process led to botched update

A timetable shows a canceled flight, following a global IT outage at BER airport in Berlin, Germany, July, 19, 2024. - REUTERS/Tobias Schlie

LONDON: A CrowdStrike software update that crashed computers globally last week hitting services from aviation to banking and healthcare was caused by a bug in the U.S. cybersecurity firm's quality control mechanism, the company said on Wednesday.

Friday's outage happened because CrowdStrike's Falcon Sensor, an advanced platform that protects systems from malicious software and hackers, contained a fault that forced computers running Microsoft's MSFT.O Windows operating system to crash and show the "Blue Screen of Death".

"Due to a bug in the Content Validator, one of the two Template Instances passed validation despite containing problematic content data," CrowdStrike said in a statement, referring to the failure of an internal quality control mechanism that allowed the problematic data to slip through the company's own safety checks.

CrowdStrike did not say what that content data was, nor why it was problematic. A "Template Instance" is a set of instructions that guides the software on what threats to look for and how to respond. CrowdStrike said it had added a "new check" to its quality control process in a bid to prevent the issue from occurring again.

The extent of the damage from the botched update is still being assessed. On Saturday, Microsoft said about 8.5 million Windows devices had been affected, and the U.S. House of Representatives Homeland Security Committee has sent a letter to CrowdStrike CEO George Kurtz asking him to testify.

CrowdStrike released information to fix affected systems last week, but experts said getting them back online would take time as it required manually weeding out the flawed code.

Wednesday's statement was in line with a widely held assessment from cybersecurity experts that something in CrowdStrike's quality control process had gone badly wrong

Popular Posts - Last 7 days

Popular Posts - Last 30 days

Blog Archive

LIVE VISITOR TRAFFIC FEED

A visitor from Oslo viewed 'Zelensky offers to meet Putin after Trump demands ' 3 mins ago
A visitor from Oslo viewed 'Trump makes trade deal with China | B' 8 mins ago
A visitor from Subang jaya viewed 'BEST FBKL' 58 mins ago
A visitor from Kuala lumpur viewed 'BGT S18 We can't get enough of Jasmine Rice's GOLD' 1 hr 15 mins ago
A visitor from Seri kembangan viewed 'Penduduk terjejas dak' 1 hr 27 mins ago
A visitor from Kuala lumpur viewed '144 projek bernilai RM14 bilion berjaya dilaksana ' 1 hr 51 mins ago
A visitor from Singapore viewed 'Search results for Syed Yazid presiden' 2 hrs 8 mins ago
A visitor from Kuala lumpur viewed 'Ketua Cabang PKR JB Tuntut Rafizi Mohon Maaf | BES' 2 hrs 14 mins ago
A visitor from Kuala lumpur viewed 'List of The Yang Di-Pertuan Agong's | BEST FBKL' 3 hrs 49 mins ago
A visitor from St petersburg viewed 'Local Telegram Group "V2K" spreading women's photo' 4 hrs 1 min ago