One week after the cyber blackout caused by CrowdStrike, the problem has not yet been fully resolved. The incident affected approximately 8.5 million Windows systems and devices, causing significant disruptions across various industries. The company's CEO, George Kurtz, stated that approximately 97% of the sensors with Windows had been recovered by this Friday.
Global insured losses due to the blackout are estimated at between $400 million and $1.5 billion, according to cyber analysis firm CyberCube.
In a message posted on LinkedIn, Kurtz expressed his gratitude for the efforts of clients, partners, and the CrowdStrike team. "Still, we understand that our work is not yet complete and we remain committed to restoring each affected system," he stated.
To assist in recovery, CrowdStrike implemented automatic recovery techniques and mobilized all of the company's resources to support its clients. The company also released a preliminary report detailing the incident and the measures being taken to prevent future problems.
“CrowdStrike’s remote update system operates at the operating system kernel level. The kernel is the central component that manages system operations and communication with the hardware. A failure at this level can lead to system-wide failures and severe operational disruptions,” explained Diego Spinola, engineering director at Igma.
According to Spinola, many affected companies had redundant systems that were not sufficiently isolated from each other, resulting in the failure of both the main systems and the backups. "The failure had a global cascading effect, impacting critical operations and causing everything from logistical delays to the paralysis of financial transactions," concluded the engineer.
CrowdStrike customers need to manually revert faulty updates and apply new patches released by the company to resolve kernel issues. In this way, users will be able to ensure that the systems are secure.
Pedro Henrique Ramos, partner in the technology department at Baptista Luz and digital law professor at Ibmec, commented that CrowdStrike's failure is a technological dependency issue. It is necessary to consider backup plans for security systems and servers regardless of the costs. This is an essential issue of governance and technological compliance.
Ciro Torres Freitas, partner in the technology department of Pinheiro Neto Advogados, highlighted that the issue with the CrowdStrike software update took public and private entities' computer systems out of operation in multiple countries, creating an unprecedented blackout situation. The company will certainly face significant scrutiny from authorities around the world, both in the administrative and judicial spheres. Assessing whether the event was predictable and whether there was indeed no interference from external agents are also important aspects in this scenario. After a week of the cyber blackout caused by CrowdStrike, the problem has still not been fully resolved. The incident affected approximately 8.5 million Windows systems and devices, causing significant disruptions across various industries. The company's CEO, George Kurtz, stated that approximately 97% of the sensors with Windows had been recovered by this Friday.
Global insured losses due to the blackout are estimated at between $400 million and $1.5 billion, according to cyber analysis firm CyberCube.
In a message posted on LinkedIn, Kurtz expressed his gratitude for the efforts of clients, partners, and the CrowdStrike team. "Still, we understand that our work is not yet complete and we remain committed to restoring each affected system," he stated.
To assist in recovery, CrowdStrike implemented automatic recovery techniques and mobilized all of the company's resources to support its clients. The company also released a preliminary report detailing the incident and the measures being taken to prevent future problems.
“CrowdStrike’s remote update system operates at the operating system kernel level. The kernel is the central component that manages system operations and communication with the hardware. A failure at this level can lead to system-wide failures and severe operational disruptions,” explained Diego Spinola, engineering director at Igma.
According to Spinola, many affected companies had redundant systems that were not sufficiently isolated from each other, resulting in the failure of both the main systems and the backups. "The failure had a global cascading effect, impacting critical operations and causing everything from logistical delays to the paralysis of financial transactions," concluded the engineer.
CrowdStrike customers need to manually revert faulty updates and apply new patches released by the company to resolve kernel issues. In this way, users will be able to ensure that the systems are secure.
Pedro Henrique Ramos, partner in the technology department at Baptista Luz and digital law professor at Ibmec, commented that CrowdStrike's failure is a technological dependency issue. It is necessary to consider backup plans for security systems and servers regardless of the costs. This is an essential issue of governance and technological compliance.
Ciro Torres Freitas, partner in the technology department of Pinheiro Neto Advogados, highlighted that the issue with the CrowdStrike software update took public and private entities' computer systems out of operation in multiple countries, creating an unprecedented blackout situation. The company will certainly face significant scrutiny from authorities around the world, both in the administrative and judicial spheres. Assessing whether the event was predictable and whether there was indeed no interference from external agents are also important aspects in this scenario.
