CrowdStrike blames bug that led to global tech outage

The company on Wednesday posted details online from its “preliminary post incident review ” of the outage, which caused chaos for the many businesses that pay for the cybersecurity firm’s software services.

Update: Our preliminary Post Incident Review (PIR) is available at the link below.  Details include the incident overview, remediation actions, and preliminary learnings. More to come in our full Root Cause Analysis (RCA).

Automated recovery techniques, coupled with strategic…

— CrowdStrike (@CrowdStrike) July 24, 2024

The problem involved an “undetected error” in the content configuration update for its Falcon platform affecting Windows machines, the Texas company said.

A bug in the content validation system allowed “problematic content data” to be deployed to CrowdStrike’s customers. That triggered an “unexpected exception” that caused a Windows operating system crash, the company said.

As part of the new prevention measures, CrowdStrike said it is also beefing up internal testing as well as putting in place “a new check” to stop “this type of problematic content” from being deployed again.

CrowdStrike has said a “significant number” of the approximately 8.5 million computers that crashed on Friday, causing global disruptions, are back in operation as customers and regulators await a more detailed explanation of what went wrong.

Once its investigation is complete, CrowdStrike said that it will publicly release its full analysis of the meltdown.

The outage caused days of widespread technological havoc, highlighted how much of the world depends on a few key providers of computing services and drawn the attention of regulators who want more details on what went wrong.