CrowdStrike update Archives

Winsage

October 1, 2024

Microsoft Issues New Windows 11 Blue Screen Warning For All Users

An update for Windows 11, KB5043145 (OS Builds 22621.4249 and 22631.4249), released on September 26, 2024, is causing devices to enter a cycle of repeated reboots and has resulted in blue and green screen errors. Microsoft has warned users that the update may lead to unresponsive systems and trigger BitLocker recovery. There is currently no immediate solution, and Microsoft is investigating the issue. Users are advised to refrain from uninstalling the update until a fix is provided.

Winsage

August 29, 2024

Update Windows now, there are some worrying security hacks on the way

A critical vulnerability identified as CVE-2024-38063 has been discovered in Windows 10, 11, and Server versions, with a severity score of 9.8. This flaw allows remote code execution and was addressed in a cumulative update released on August 13. A proof-of-concept for the vulnerability has been shared, detailing a method to replicate it using the command "bcdedit /set debug on" followed by a restart. Microsoft has stated that while the vulnerability had not been exploited initially, it was only a matter of time before it would be targeted. Users are strongly advised to install the latest security patches to protect their systems from potential cyberattacks.

Winsage

August 14, 2024

Microsoft squashes Windows BitLocker recovery bug

Microsoft addressed an issue that caused many Windows PCs to unexpectedly enter BitLocker recovery mode, affecting nearly all supported versions of Windows 11, Windows 10, and various editions of Windows Server since 2008, following the July 2024 Windows security update. Users were more likely to encounter this issue if they had the Device Encryption option enabled. The problem was resolved with the August 13 update, and Microsoft recommended installing the latest updates for important improvements and issue resolutions. BitLocker is a technology for encrypting user storage, and its prominence increased after a July 2024 CrowdStrike update led to many devices experiencing a persistent blue screen boot loop. The July 2024 security update inadvertently triggered BitLocker recovery for some devices. Additionally, BitLocker has been exploited by cybercriminals in ransomware attacks, and users typically should not see the recovery mode unless prompted by hardware updates.

Winsage

August 12, 2024

New Windows 10 And 11 Blue Screen Of Death Warning Issued

A new vulnerability, designated CVE-2024-6768, has been identified in Windows, affecting all versions of Windows 10, Windows 11, and Windows Server 2022. This flaw is related to the common log file system Windows driver and results from improper validation of input data, leading to a blue screen of death. The vulnerability allows a user with no privileges to crash the system using a specially crafted file, even if the system is fully updated. Microsoft was first notified of this issue in December 2023 but claimed it could not reproduce the vulnerability, despite Fortra's ability to replicate it. No workaround or mitigation has been found, and there is skepticism about Microsoft's likelihood of providing a fix. The timeline of the vulnerability includes multiple reports and evidence provided by Fortra, culminating in the planned publication of the CVE on August 12, 2024.

Winsage

July 29, 2024

CrowdStrike—How Microsoft Will Protect 8.5 Million Windows Machines

A CrowdStrike update caused the crashing of millions of Windows machines, leading Microsoft to release an analysis of the incident. CrowdStrike identified a bug in its software as the cause and committed to improving its quality assurance processes. Microsoft confirmed that the issue was a read-out-of-bounds memory safety error in the CSagent.sys driver. Microsoft explained the importance of kernel drivers for security products, noting their role in system-wide visibility and performance, but also acknowledged the complexities and risks associated with kernel-level operations. Following the incident, Microsoft proposed four steps to enhance Windows security, including safe rollout guidance, reducing kernel driver access, improving isolation and anti-tampering capabilities, and implementing zero trust approaches.

Winsage

July 29, 2024

Google breaks password manager with iffy Chrome update

Google issued an apology for a disruption affecting its password manager for millions of Windows users, which lasted nearly 18 hours and was resolved on July 25. The issue impacted users of the M127 version of the Chrome browser on Windows, making saved passwords temporarily inaccessible. Approximately 2 percent of users within the affected 25 percent experienced this problem, potentially impacting over 17 million users given Chrome's market share of 65.68 percent among the 5.4 billion internet users in 2023. The root cause was identified as a "change in product behavior without proper feature guard." This incident highlights the risks associated with browser-based password managers, as a single flawed update can render a user's password vault unreachable.

Winsage

July 27, 2024

Southwest Airlines avoided CrowdStrike-Microsoft outage because it’s still running Windows 3.1 — fourth-largest US airline remained free of BSoD errors because its OS hasn’t been updated in decades

A global IT outage caused by a problematic update from CrowdStrike led millions of Windows computers to experience Blue Screen of Death errors, significantly disrupting airlines, hospitals, banks, and businesses worldwide. United, Delta, and American Airlines faced thousands of canceled flights, while Southwest Airlines remained operational due to its reliance on the outdated Windows 3.1 operating system, which has not been updated since 2001. This legacy system was unaffected by the CrowdStrike update, allowing Southwest to avoid similar disruptions. Additionally, Southwest uses Windows 95 for staff scheduling, which also escaped the update's impact. Despite its operational resilience, Southwest's operations were indirectly affected by disruptions at other airports, and there are concerns about the long-term viability of its outdated systems.

Winsage

July 27, 2024

CrowdStrike CEO Was Working For McAfee In 2010 When There Was A Global Tech Outage Too

The faulty update provided by CrowdStrike for Windows led to massive system failures, affecting major airlines, healthcare providers, and retail operations. The issue was not a result of a cyberattack but a critical flaw in the update's coding. CrowdStrike's CEO, George Kurtz, had previously been involved in a similar tech failure at McAfee in 2010, raising questions about the company's internal processes and safeguards.

Winsage

July 26, 2024

CrowdStrike, Microsoft Outage: Is Tech Too Vulnerable? – Georgetown University

- Cybersecurity firm CrowdStrike experienced a technical outage on July 19, 2024, due to a faulty software update that crashed customers' Windows systems. - The outage affected critical sectors such as flights, medical procedures, and other societal systems. - Despite not being a cyberattack, hackers took advantage of the chaos by using social engineering techniques to trick people into harmful actions. - The incident highlights the potential impact of a widespread cyberattack and raises questions about liability, accountability, and deterrence. - To secure ourselves, it is essential to follow best practices such as using complex passwords, updating software regularly, backing up files, and staying informed about cybersecurity threats.

Winsage

July 26, 2024

Microsoft’s July update may put your Windows PC in BitLocker recovery – here’s how to fix this

A Windows update glitch affecting Windows 10, Windows 11, and Windows Server is causing a BitLocker recovery screen issue, prompting users to enter their recovery key to unlock their drive. Microsoft is working on a resolution and expects to release a fix in the coming weeks.