Crowdstrike's disasterpiece!
As you should may know, last Friday, CrowdStrike faced a significant incident when a faulty update to its Falcon sensor configuration caused widespread IT outages globally. The update, which was deployed on July 19, 2024, between 04:09 and 05:27 UTC, included a configuration error in Channel File 291 that led to system crashes on Windows machines running the affected version of the Falcon sensor. This error caused the infamous "blue screen of death" (BSOD), resulting in severe disruptions for businesses worldwide, including banks, airlines, and other critical sectors. The faulty update specifically targeted named pipes used by common command and control (C2) frameworks in cyberattacks. However, a logic error in the update's configuration triggered system crashes, rendering affected systems inoperable. Devices with Windows' BitLocker encryption enabled faced additional challenges, as recovering from the crash required access to recovery keys often stored on servers ...