CrowdStrike update Archives

Winsage

May 12, 2025

Microsoft Releases Detailed Guide to Fix Windows Blue Screen Errors

Microsoft has released an official guide to address the Blue Screen of Death (BSOD) issues in Windows 11 and Windows 10, updated on May 11, 2025, following a significant global outage in July 2024 caused by a problematic CrowdStrike update. The guide categorizes troubleshooting into basic and advanced steps, highlighting common error codes like PAGEFAULTINNONPAGEDAREA (0x00000050). Approximately 75% of stop errors are attributed to faulty drivers, making driver verification essential. Basic troubleshooting includes removing recently added hardware, booting into Safe Mode, checking Device Manager for problematic components, ensuring 10-15% free disk space, installing the latest Windows Updates, and using System Restore. Advanced troubleshooting involves using Event Viewer, running Windows Memory Diagnostics, and analyzing memory dumps with WinDbg. The guide emphasizes the resource-intensive nature of Driver Verifier and suggests testing suspicious drivers in smaller groups. It also includes hardware-specific troubleshooting tips, such as checking for overheating components and performing disk diagnostics with the “chkdsk” command.

Winsage

March 31, 2025

Windows 11 quick machine recovery: Restoring devices with boot issues

Microsoft has launched a quick machine recovery feature in its Windows operating system to help IT administrators remotely execute fixes on machines that cannot boot, particularly during widespread outages. This feature allows devices to automatically enter Windows Recovery Environment (WinRE) and connect with Microsoft’s recovery services for tailored remediations delivered via Windows Update. IT administrators can enable or disable this feature remotely and configure settings such as scanning intervals and restart timeouts. Currently, quick machine recovery is in testing and available to users in the Windows Insider Program, with plans for future accessibility to IT administrators managing Windows 11 Pro and Enterprise devices.

Winsage

March 30, 2025

Microsoft tests new Windows 11 tool to remotely fix boot crashes

Microsoft is testing a new tool for Windows 11 called Quick Machine Recovery, which aims to address issues related to buggy drivers and configurations that hinder the operating system's startup. This tool is part of the Windows Resiliency Initiative, designed to enhance system stability and minimize downtime by automating the detection, diagnosis, and rectification of critical failures. Quick Machine Recovery will allow Microsoft to deploy targeted remediations remotely during widespread outages affecting device startup, thus automating fixes without complex manual interventions. The tool will automatically initiate when a new driver or configuration change disrupts startup, establishing an internet connection to transmit crash data to Microsoft for analysis and remote fixes. Microsoft plans to enable this feature by default in Windows 11 Home editions, with customization options for enterprise users. A test remediation package will soon be released for Windows Insider Preview Beta Channel users to experience Quick Machine Recovery.

Winsage

March 29, 2025

Microsoft tests Quick Machine Recovery to restore PCs that can’t boot

A new feature has been introduced to enhance system reliability and mitigate the risk of widespread outages, following disruptions caused by a recent Crowdstrike update. This initiative aims to address vulnerabilities in complex software ecosystems, instill user confidence, and ensure operations remain resilient against unexpected challenges. Key benefits include enhanced reliability, proactive risk management, and increased user confidence. The development reflects a trend in the tech sector prioritizing reliability and user experience.

Winsage

October 1, 2024

Microsoft Issues New Windows 11 Blue Screen Warning For All Users

An update for Windows 11, KB5043145 (OS Builds 22621.4249 and 22631.4249), released on September 26, 2024, is causing devices to enter a cycle of repeated reboots and has resulted in blue and green screen errors. Microsoft has warned users that the update may lead to unresponsive systems and trigger BitLocker recovery. There is currently no immediate solution, and Microsoft is investigating the issue. Users are advised to refrain from uninstalling the update until a fix is provided.

Winsage

August 29, 2024

Update Windows now, there are some worrying security hacks on the way

A critical vulnerability identified as CVE-2024-38063 has been discovered in Windows 10, 11, and Server versions, with a severity score of 9.8. This flaw allows remote code execution and was addressed in a cumulative update released on August 13. A proof-of-concept for the vulnerability has been shared, detailing a method to replicate it using the command "bcdedit /set debug on" followed by a restart. Microsoft has stated that while the vulnerability had not been exploited initially, it was only a matter of time before it would be targeted. Users are strongly advised to install the latest security patches to protect their systems from potential cyberattacks.

Winsage

August 14, 2024

Microsoft squashes Windows BitLocker recovery bug

Microsoft addressed an issue that caused many Windows PCs to unexpectedly enter BitLocker recovery mode, affecting nearly all supported versions of Windows 11, Windows 10, and various editions of Windows Server since 2008, following the July 2024 Windows security update. Users were more likely to encounter this issue if they had the Device Encryption option enabled. The problem was resolved with the August 13 update, and Microsoft recommended installing the latest updates for important improvements and issue resolutions. BitLocker is a technology for encrypting user storage, and its prominence increased after a July 2024 CrowdStrike update led to many devices experiencing a persistent blue screen boot loop. The July 2024 security update inadvertently triggered BitLocker recovery for some devices. Additionally, BitLocker has been exploited by cybercriminals in ransomware attacks, and users typically should not see the recovery mode unless prompted by hardware updates.

Winsage

August 12, 2024

New Windows 10 And 11 Blue Screen Of Death Warning Issued

A new vulnerability, designated CVE-2024-6768, has been identified in Windows, affecting all versions of Windows 10, Windows 11, and Windows Server 2022. This flaw is related to the common log file system Windows driver and results from improper validation of input data, leading to a blue screen of death. The vulnerability allows a user with no privileges to crash the system using a specially crafted file, even if the system is fully updated. Microsoft was first notified of this issue in December 2023 but claimed it could not reproduce the vulnerability, despite Fortra's ability to replicate it. No workaround or mitigation has been found, and there is skepticism about Microsoft's likelihood of providing a fix. The timeline of the vulnerability includes multiple reports and evidence provided by Fortra, culminating in the planned publication of the CVE on August 12, 2024.

Winsage

July 29, 2024

CrowdStrike—How Microsoft Will Protect 8.5 Million Windows Machines

A CrowdStrike update caused the crashing of millions of Windows machines, leading Microsoft to release an analysis of the incident. CrowdStrike identified a bug in its software as the cause and committed to improving its quality assurance processes. Microsoft confirmed that the issue was a read-out-of-bounds memory safety error in the CSagent.sys driver. Microsoft explained the importance of kernel drivers for security products, noting their role in system-wide visibility and performance, but also acknowledged the complexities and risks associated with kernel-level operations. Following the incident, Microsoft proposed four steps to enhance Windows security, including safe rollout guidance, reducing kernel driver access, improving isolation and anti-tampering capabilities, and implementing zero trust approaches.

Winsage

July 29, 2024

Google breaks password manager with iffy Chrome update

Google issued an apology for a disruption affecting its password manager for millions of Windows users, which lasted nearly 18 hours and was resolved on July 25. The issue impacted users of the M127 version of the Chrome browser on Windows, making saved passwords temporarily inaccessible. Approximately 2 percent of users within the affected 25 percent experienced this problem, potentially impacting over 17 million users given Chrome's market share of 65.68 percent among the 5.4 billion internet users in 2023. The root cause was identified as a "change in product behavior without proper feature guard." This incident highlights the risks associated with browser-based password managers, as a single flawed update can render a user's password vault unreachable.