Security News

How did a CrowdStrike file crash millions of Windows computers? We take a closer look at the code
2024-07-23 20:52

Analysis Last week, at 0409 UTC on July 19, 2024, antivirus maker CrowdStrike released an update to its widely used Falcon platform that caused Microsoft Windows machines around the world to crash. Channel Files are updated over time by CrowdStrike and pushed to systems running its software.

Administrators have update lessons to learn from the CrowdStrike outage
2024-07-23 17:27

How could this happen to us? We were supposed to be two versions behind? If administrators have learned anything from the CrowdStrike chaos, it's to understand exactly what delayed updates mean –...

Cybercrooks spell trouble with typosquatting domains amid CrowdStrike crisis
2024-07-23 15:15

Thousands of typosquatting domains are now registered to exploit the desperation of IT admins still struggling to recover from last week's CrowdStrike outage, researchers say. The incident wasn't isolated and CrowdStrike was forced to issue a public memo on the same day warning against opportunistic cybercriminals exploiting the situation.

Fake CrowdStrike repair manual pushes new infostealer malware
2024-07-23 14:31

CrowdStrike is warning that a fake recovery manual to repair Windows devices is installing a new information-stealing malware called Daolpu. [...]

EU gave CrowdStrike the keys to the Windows kernel, claims Microsoft
2024-07-22 13:00

Did the EU force Microsoft to let third parties like CrowdStrike run riot in the Windows kernel as a result of a 2009 undertaking? This is the implication being peddled by the Redmond-based cloud and software titan. As the tech industry deals with the fallout from the CrowdStrike incident, Microsoft is facing questions.

Microsoft releases tool to speed up recovery of systems borked by CrowdStrike update
2024-07-22 12:08

By now, most people are aware of – or have been personally affected by – the largest IT outage the world have ever witnessed, courtesy of a defective update for Crowdstrike Falcon Sensors that...

Microsoft releases Windows repair tool to remove CrowdStrike driver
2024-07-22 01:22

Microsoft has released a custom WinPE recovery tool to find and remove the faulty CrowdStrike update that crashed an estimated 8.5 million Windows devices on Friday. [...]

CrowdStrike's Falcon Sensor also linked to Linux kernel panics and crashes
2024-07-21 23:51

CrowdStrike's now-infamous Falcon Sensor software, which last week led to widespread outages of Windows-powered computers, has also caused crashes of Linux machines. A second issue titled "System crashed at cshook network ops inet6 sockraw release+0x171a9" advised users "For assistance with troubleshooting potential issues with the falcon lsm serviceable kernel module provided from the CrowdStrike Falcon Sensor/Agent security software suite." Red Hat also advised that "Disabling the CrowdStrike Falcon Sensor/Agent software suite will mitigate the crashes and provide temporary stability to the system in question while the issue is investigated." The issue was "Observed but not limited to release 6 and 7.".

Fake CrowdStrike fixes target companies with malware, data wipers
2024-07-21 19:31

Threat actors are exploiting the massive business disruption from CrowdStrike's glitchy update on Friday to target companies with data wipers and remote access tools. [...]

Fake CrowdStrike updates target companies with malware, data wipers
2024-07-21 19:31

Threat actors are exploiting the massive business disruption from CrowdStrike's glitchy update on Friday to target companies with data wipers and remote access tools. In an update today, CrowdStrike says that it "Is actively assisting customers" impacted by the recent content update that crashed millions of Windows hosts worldwide.