Microsoft users globally are grappling with the notorious “blue screen of death” following a significant IT outage linked to an update from cybersecurity firm CrowdStrike. This issue has caused widespread disruptions across various sectors.
The crisis emerged after CrowdStrike’s update affected Windows 365 Cloud PCs, prompting Microsoft to issue a warning through its 365 Status X account. The tech giant advised users to restore their systems to a state prior to the update on July 19, 2024, providing online instructions for guidance.
Microsoft noted that users might experience the blue screen error and find their devices stuck in a restart loop. The company reported that some users have recovered by attempting multiple Virtual Machine restarts. CrowdStrike has since retracted the faulty update, and users still facing issues are encouraged to contact CrowdStrike for further assistance.
CrowdStrike’s CEO, George Kurtz, clarified that the problem stemmed from a defect in a single content update for Windows hosts, emphasizing that it was not a security breach or cyberattack. The issue has been identified, isolated, and a fix has been deployed.
In the UK, the government activated the Cobra committee to manage the fallout, with ministers coordinating responses across affected sectors, including transportation and healthcare. Transport Secretary Louise Haigh stated efforts were underway to mitigate the impact on flights and trains. Ryanair advised passengers to arrive early at airports due to potential disruptions, while American Airlines, Delta, and United Airlines also reported issues.
The outage affected a wide range of services globally, including Visa, BT, major supermarkets, banks, online gaming platforms, and media outlets. In the healthcare sector, UK GP practices struggled to access patient records, though NHS hospitals and emergency services remained unaffected.
Alan Woodward, a cybersecurity professor at the University of Surrey, explained that CrowdStrike Falcon, the affected product, monitors large networks of PCs and installs monitoring software on each machine. The need for manual intervention to fix the issue on each affected PC could result in days of recovery and disruption.
Overall, this incident underscores the vulnerability of interconnected systems to software updates, highlighting the need for robust contingency planning and swift resolution mechanisms in the face of IT crises.