Security News > 2024 > July > Faulty CrowdStrike update takes out Windows machines worldwide
![Faulty CrowdStrike update takes out Windows machines worldwide](/static/build/img/news/faulty-crowdstrike-update-takes-out-windows-machines-worldwide-medium.jpg)
Houndreds of housands and possibly millions of Windows computers and servers worldwide have been made inoperable by a faulty update of Crowdstrike Falcon Sensors, and the outage affected transport, broadcast, financial, retail and other organizations in Europe, Australia, the US and elsewhere.
What initially seemed like it might be a Microsoft problem is now confirmed to have been created by Crowdstrike, i.e., its endpoint security agent.
Locating the file matching "C-00000291*.sys" and deleting it, then4.
In many cases this will have to be a manual intervention that has to be performed via a local admin account, and it will take a while at companies with huge fleets of Windows PC workstations to restore them - and on a Friday, too.
Crowdstrike is surely analyzing the "Bad" update to see what happened, and security researchers are trying to do the same.
"The.sys files causing the issue are channel update files, they cause the top level CS driver to crash as they're invalidly formatted. It's unclear how/why Crowdstrike delivered the files and I'd pause all Crowdstrikes updates temporarily until they can explain," security researcher Kevin Beaumont noted.
News URL
https://www.helpnetsecurity.com/2024/07/19/crowdstrike-outage/
Related news
- CrowdStrike file update bricks Windows machines around the world (source)
- CrowdStrike update crashes Windows systems, causes outages worldwide (source)
- Faulty CrowdStrike Update Crashes Windows Systems, Impacting Businesses Worldwide (source)
- Microsoft confirms CrowdStrike update also hit Windows 365 PCs (source)
- Microsoft: Windows 11 preview update causes taskbar crashes (source)
- Windows 10 KB5039211 update released with new feature, 12 fixes (source)
- Windows 11 KB5039212 update released with 37 changes, fixes (source)
- New Windows Server KB5039227 and KB5039217 updates fix LSASS crashes (source)
- Microsoft Photos update brings requested features to Windows 11 (source)
- Windows 10 KB5039299 update released with 10 changes or fixes (source)