CrowdStrike has released a detailed root cause analysis of the issues caused by the Falcon sensor update on July 19, 2024, which led to system crashes for some Windows users. The problem stemmed from a mismatch between expected and provided input fields in the sensor's Content Interpreter and a new Template Type introduced earlier in the year. This discrepancy was overlooked during initial testing due to wildcard matching criteria. CrowdStrike has implemented multiple mitigations, including compile-time validation and runtime checks, and engaged third-party security reviews to prevent future occurrences. Approximately 99% of affected Windows sensors were restored by July 29, with a final hotfix due by August 9.

CrowdStrike Publishes Technical Root Cause Analysis of Faulty Falcon Update cybersecuritynews

CrowdStrike has published a root cause analysis explaining the Falcon Sensor software update crash known as the "Channel File 291" incident, which affected millions of Windows devices. The issue was traced to a content validation problem arising from a new Template Type designed to detect novel attack techniques on Windows systems. A mismatch between input parameters during content validation resulted in out-of-bounds memory reads, causing system crashes. CrowdStrike has implemented several measures to address the issue, including increased testing, new validation checks, and independent code reviews. Despite these efforts, Delta Air Lines claims the incident cost it $500 million in disruptions and is seeking damages from CrowdStrike and Microsoft. Both companies have responded to the criticism, suggesting Delta's issues may extend beyond the security update.

CrowdStrike Reveals Root Cause of Global System Outages thehackernews.com

The University of Texas System's audit revealed the termination of a costly $62 million collaboration between MD Anderson Cancer Center and IBM's Watson, initiated to develop the Oncology Expert Advisor for enhancing cancer care. Despite significant investments, the project, begun in 2012, faced numerous delays and scope expansions, ultimately covering only a limited range of cancers and failing to integrate with MD Anderson's electronic medical records. This termination occurred amidst the center's financial struggles, leading to job cuts, and while IBM defended the project's potential, MD Anderson seeks new partners to possibly revive it.

Big Data Bust: MD Anderson-Watson Project Dies Medscape

OpenAI has seen significant turnover in its top leadership, with co-founder John Schulman leaving to join rival Anthropic, and another co-founder, Greg Brockman, taking a year-long leave of absence. Earlier this year, other key figures including safety team leaders and a prominent product manager also departed. These exits, although not directly related, raise concerns about the stability and direction of the company, potentially fueling fears that profit motives are overshadowing AI safety. OpenAI has attempted to reassure stakeholders by reaffirming commitments to AI safety, but internal and external pressures remain high.

More Churn in OpenAI's Top Leadership Inc