Security News

Week in review: CrowdStrike-triggered outage insights, recovery, and measuring cybersecurity ROI
2024-07-28 08:00

Cloud security threats CISOs need to know aboutIn this Help Net Security interview, Ava Chawla, Head of Cloud Security at AlgoSec, discusses the most significant cloud security threats CISOs must be aware of in 2024. Cybersecurity ROI: Top metrics and KPIsIn this Help Net Security interview, Karthik Swarnam, Chief Security and Trust Officer at ArmorCode, discusses key metrics and KPIs to measure cybersecurity ROI. Confidential AI: Enabling secure processing of sensitive dataIn this Help Net Security interview, Anand Pashupathy, VP & GM, Security Software & Services Division at Intel, explains how Intel's approach to confidential computing, particularly at the silicon level, enhances data protection for AI applications and how collaborations with technology leaders like Google Cloud, Microsoft, and Nvidia contribute to the security of AI solutions.

The CrowdStrike Outage and Market-Driven Brittleness
2024-07-25 18:37

The market rewards short-term profit-maximizing systems, and doesn't sufficiently penalize such companies for the impact their mistakes can have. The asymmetry of costs is largely due to our complex interdependency on so many systems and technologies, any one of which can cause major failures.

CrowdStrike: Buggy Validator Started Massive Outage
2024-07-24 15:15

A major disruption to Windows PCs in the U.S., U.K., Australia, South Africa and other countries was caused by an error in a CrowdStrike update, the cloud security company announced on Friday. Blue Screen of Death widespread due to CrowdStrike outage.

Administrators have update lessons to learn from the CrowdStrike outage
2024-07-23 17:27

How could this happen to us? We were supposed to be two versions behind? If administrators have learned anything from the CrowdStrike chaos, it's to understand exactly what delayed updates mean –...

Week in review: CrowdStrike update causes widespread IT outage, critical Splunk Enterprise flaw
2024-07-21 08:00

Faulty CrowdStrike update takes out Windows machines worldwideThousands and possibly millions of Windows computers and servers worldwide have been made inoperable by a faulty update of Crowdstrike Falcon Sensors, and the outage affected transport, broadcast, financial, retail and other organizations in Europe, Australia, the US and elsewhere. Critical Splunk flaw can be exploited to grab passwordsA recently fixed vulnerability affecting Splunk Enterprise on Windows "Is more severe than it initially appeared," according to SonicWall's threat researchers.

Update: Worldwide IT outage due to buggy Crowdstrike sensor configuration update
2024-07-19 16:41

The world is 16+ hours into what looks like the biggest IT outage in history, triggered by a defective update for Crowdstrike endpoint security software for Windows machines. Crowdstrike has warned organizations to make sure to communicate with the company's representatives through official channels.

CrowdStrike update crashes Windows systems, causes outages worldwide
2024-07-19 11:43

A faulty component in the latest CrowdStrike Falcon update is crashing Windows systems, impacting various organizations and services across the world, including airports, TV stations, and hospitals. [...]

Major Microsoft 365 outage caused by Azure configuration change
2024-07-19 09:57

Microsoft says an Azure configuration change caused a major Microsoft 365 outage on Thursday, affecting customers across the Central US region. [...]

Cloudflare blames recent outage on BGP hijacking incident
2024-07-05 18:41

Internet giant Cloudflare reports that its DNS resolver service, 1.1.1.1, was recently unreachable or degraded for some of its customers because of a combination of Border Gateway Protocol hijacking and a route leak. The incident occurred last week and affected 300 networks in 70 countries.

CDK Global outage caused by BlackSuit ransomware attack
2024-06-22 19:08

The BlackSuit ransomware gang is behind CDK Global's massive IT outage and disruption to car dealerships across North America, according to multiple sources familiar with the matter. The same sources, who provided information on condition of anonymity, told BleepingComputer that CDK is currently negotiating with the ransomware gang to receive a decryptor and not leak stolen data.