Southwest Airlines managed to avoid major disruptions during a global outage caused by a faulty CrowdStrike update because it still relies on Windows 3.1 and Windows 95 operating systems. Other major US airlines faced significant troubles as their newer systems were hit by the Blue Screen of Death (BSoD) due to the update. While Southwest's use of outdated systems has often been criticized, it shielded the airline from chaos, though some issues still impacted airports. The incident raises questions about future system upgrades, as newer yet vulnerable systems present ongoing risks.

Windows 3.1 saves the day during CrowdStrike outage — Southwest Airlines scrapes by with archaic OS Tom's Hardware

A faulty software update from CrowdStrike has significantly disrupted U.S. healthcare organizations, causing hospitals to cancel appointments and delay services by rendering Windows devices inoperable. The bug in their Falcon threat detection platform led to system crashes and incapacitated devices with the blue screen of death, affecting around 8.5 million Windows devices globally. Despite the availability of a fix, the resolution process requires manual intervention, imposing a heavy burden on IT teams. The disruption impacted major health systems and other critical services, including flight operations and emergency communications. Additionally, cybercriminals are exploiting the situation by creating fake CrowdStrike-related domains to perpetrate scams, further complicating recovery efforts.

Faulty CrowdStrike Software Update Causing Major Disruption at U.S. Healthcare Organizations The HIPAA Journal

A flawed software update released by CrowdStrike on July 18 disrupted IT systems globally, significantly impacting 8.5 million Microsoft Windows devices, including those in healthcare. Health systems such as Kaiser Permanente, Banner Health, and Mass General Brigham faced unprecedented challenges, leading to postponed surgeries and closed outpatient facilities. The cyber disruption affected major EHR systems like Epic and Meditech, with Providence's 52-hospital system experiencing severe operational breakdowns. CrowdStrike reported that hackers exploited the situation, adding additional malware threats. Microsoft, along with Google Cloud and AWS, is collaborating to ameliorate the situation, while the healthcare community continues to recover, leveraging the incident as a crucial learning experience for future IT resilience.

'Worse than a cyberattack': 10 notes on the Microsoft-CrowdStrike IT outage Becker's Hospital Review

CrowdStrike, reeling from a flawed update that caused IT disruptions worldwide, has alerted that threat actors are exploiting this chaos by distributing Remcos RAT malware to its customers in Latin America. Attackers are using a ZIP file labeled “crowdstrike-hotfix.zip,” which contains a malware loader that installs the Remcos RAT. The archive file includes Spanish instructions, suggesting the campaign targets Latin American users. Malicious actors have also set up fake CrowdStrike domains, offering services for cryptocurrency payments. CrowdStrike advises customers to verify communications with official representatives and follow provided technical guidance.

Cybercriminals Exploit CrowdStrike Update Mishap to Distribute Remcos RAT Malware The Hacker News