CrowdStrike acknowledged a defect in a specific content update affecting Windows hosts, which caused crashes identified by a blue screen error related to the Falcon Sensor. The issue does not affect Mac or Linux hosts and has been isolated and resolved with a fix now deployed. Unaffected Windows systems require no action, while impacted systems must follow workaround steps to delete the problematic channel file. Customers are advised to stay updated via the support portal and ensure communication with CrowdStrike through official channels. The Falcon platform systems and services remain operational and unaffected by this issue.

Statement on Falcon Content Update for Windows Hosts - crowdstrike.com Statement on Falcon content update for Windows Hosts

CrowdStrike identified a specific file, “C-00000291*.sys”, in a recent update as the cause of a global IT outage. Users can address this issue by booting Windows into Safe Mode or the Windows Recovery Environment, navigating to the C:WindowsSystem32driversCrowdStrike directory, deleting the problematic file, and then rebooting the host normally. This solution allows users to retain the Falcon Sensor update while resolving the outage. Further details and workaround steps are available on the CrowdStrike blog.

CrowdStrike has identified a Channel File in the update as the culprit for… | 94 comments The Cyber Security Hub

A software update by cybersecurity firm CrowdStrike caused widespread IT outages across various sectors, including banking, healthcare, and air travel. Global disruptions ensued as both businesses and consumers faced significant service interruptions. The issue stemmed from a problem in CrowdStrike's Falcon product, leading to devices running Windows operating systems to crash with the "blue screen of death." The company is currently working to roll back the problematic update. Microsoft clarified that their prior cloud service outage was unrelated. While CrowdStrike announced that a fix was in progress, experts noted that the recovery process might require significant manual intervention.

How a software update from cyber firm CrowdStrike caused one of the world’s biggest IT blackouts CNBC

A recent CrowdStrike update caused a widespread IT outage affecting Microsoft Windows 10 and later systems, while Mac and Linux hosts remained unaffected. The issue stemmed from the CrowdStrike Falcon content update and was not due to malicious cyber activity. CrowdStrike has identified and deployed a fix for the problem. However, threat actors are exploiting the situation for phishing and other malicious activities. Organizations are urged by CISA to heighten their cybersecurity measures, remain vigilant, and ensure employees follow guidance from legitimate sources only. CISA and international cybersecurity centers continue to monitor and support remediation efforts.

Widespread IT Outage Due to CrowdStrike Update | CISA publication