In his first statement following the widespread outage at Microsoft caused by an update to CrowdStrike ‘Falcon Sensor’, the security firm’s CEO has said that the issue has been isolated and resolved.
This bug has affected several stock exchanges, supermarkets and flight operations across the world. Users are experiencing a Blue Screen of Death (BSOD) error, causing their systems to shut down or restart unexpectedly.
In a statement on X, CrowdStrike CEO George Kurtz said the company is working with customers who have been affected by the flaw found in a single content update for Windows hosts, adding that Mac and Linux-based systems have not been affected.
Emphasising that the outage was not a security incident or a cyber attack, he wrote, “The issue has been identified, isolated and resolved. We redirect customers to the support portal for the latest updates and will continue to provide complete and continuous updates on our website.”
CrowdStrike is actively working with customers who are affected by a flaw found in a single content update for Windows hosts. Mac and Linux hosts are not affected. This is not a security incident or cyberattack. The issue has been identified, isolated, and resolved. We…
— George Kurtz (@George_Kurtz) July 19, 2024
“We also advise organizations to ensure they communicate with CrowdStrike representatives through official channels. Our team remains fully committed to ensuring the security and stability of CrowdStrike customers,” he added.
what did microsoft say
In a statement earlier on Friday, Microsoft said, “We are committed to treating this incident with the highest priority and urgency while we continue to work to remediate the impact on downed Microsoft 365 apps.”
“Our services are still undergoing continuous improvement while we continue to take mitigation actions,” he said.
Solution
The Indian Computer Emergency Response Team (CERT-In) has said in an advisory that the following method can be used as a solution:
– Boot Windows into Safe Mode or Windows Recovery Environment Go to C:\Windows\System32\drivers\CrowdStrike directory Locate and delete the file matching “C-00000291*.sys”.
– Boot the host normally.