CrowdStrike Says Global IT Outage Impacting Windows PCs, But Mac and Linux Hosts Not Affected

[laptech]

oh and where are the conspiracy theories that the fault was caused by an employee who is an Apple fan and therefore wanted the world to see what could happen to all those that chose windows computers instead of Apple mac ones and thus change the minds of business owners to replace all their windows computer for Apple mac ones

 

[Jett0516]

Remote workers rejoice!! 🙌

 

[WarmWinterHat]

Remote workers rejoice!! 🙌

All our VPN services are down at my company, so remote workers have to come in.

 

[tywebb13]

The problem is autoupdates generally.

apple and microsoft have pushed updates which have caused problems in the past - so no point saying trash the windows pc and get mac instead. apple do autoupdates too.

- like ios 8.0.1 which disabled cellular network, not technically bricking but made the iphones inoperable as phones

- and Windows 10 October 2018 Update which deleted files from computer

apple and microsoft pulled them but the damage was done

lots of 3rd party apps do autoupdates too, so it isn’t just crowdstrike

but you need to take control of your devices, disable autoupdates as much as possible and do updates manually, and only when it suits you and not them - and only when you know it is safe to do so

 

[Ctrlos]

I'll take that role. The EU is mandating that if Apple writes a program with kernel-level access, it must grant that same access to third parties.

Get the EU out of the OS. Period.

What makes Apple's app any more secure than a third party?

 

[MasterControlProgram]

Microsoft's response: See, we told you to upgrade to Windows 11.

😉

 

[Tago]

Do you read articles? Or do you have an autopilot "blame Microsoft" because it is cool?

You are biting your own tail here, whoever delivered the update to end users / corporations are responsible, be it Crowdstrike or Microsoft. I`m not blaming Microsoft, IF they are the provider of 3rd party software to end customers, they are responsible.

 

[lkrupp]

Not sure why people are crapping on Microsoft here. The issue is crowdstrike. They have Linux and Mac versions of Falcon sensor too. They just happened to screw up the windows version today and push it to production past everyone’s security controls.

This could be Apple or Linux tomorrow.

We always get criticized for being Apple apologists here. Now the shoe is on the other foot. How does it feel?

 

[TheOldChevy]

I'm not really sure how any of this supports the point you're trying to make. Companies hosting and controlling their own IT systems locally also use Crowdstrike and have been just as heavily affected by this. I'd argue that it's often the cloud providers who are more resilient to things like this and when things do go wrong have the resources, expertise and clout to get their client's hosted systems up and running again far quicker than your average small company IT dept.

With automatic update ? You run an airport, a hospital with update cycles that you do not control ? That's what I do not understand.

 

[lkrupp]

You are biting your own tail here, whoever delivered the update to end users / corporations are responsible, be it Crowdstrike or Microsoft. I`m not blaming Microsoft, IF they are the provider of 3rd party software to end customers, they are responsible.

But Apple always gets blamed in these forums for things beyond its control. Why does Windows get a pass?

 

[Timo_Existencia]

Again, I disagree, as this openness is known to the customer and they (the customer) actively and with administrator rights need to install something like Crowdstrike.

That's like blaming a car manufacturer that you can put petrol in a diesel car. Just because it's possible doesn't mean it's not your responsibility to make sure it doesn't happen.

IF as we are seeing with the new batch of cars such as Tesla, the car runs on an operating system that is globally connected, and that software allows third-party apps access to critical functions like speed and braking and steering, and a 3rd party app caused a million cars to crash due to an update, then yes, I'd blame Tesla.

Microsoft shares heavily in the blame here.

 

[one more]

Was this not caused by a Windows update?

It was caused by a Crowdstrike update pushed to its Windows clients.

 

[Timo_Existencia]

What makes Apple's app any more secure than a third party?

It's a matter of who you trust. I trust Apple as a single source for critical updates more than I'd trust Apple opening up the system to a million different developers all of whom could crash the system.

That should be obvious, no?

 

[H2SO4]

Troubleshooting steps

1. Shut down your PC
2. Get a mac.

And then boot back into Windows in parallels to get some work done, (certainly if you're doing some kinds of industrial work).
Oh Damn!! Seems a Mac can be useless too.

 

[davide_eu]

If Microsoft allows a 3rd party app access to the kernel in a way that it can have such a devastating effect around the world, that's on Microsoft. Period. Full stop.

It is called freedom, I know a word very unknown here.
The server is yours and you have the final authority to do whatever you want, under your responsibility.
You are not a USER, you are the SYSADMIN.

Do you get the difference?

 

[one more]

What I don't understand... Everyone should know 2 rules: Never buy a device that has just been released and never install an update immediately...

Wise words, but I guess in this case the update self-installed or was installed in bulk by system admins, as it is used on a commercial scale.

 

[davide_eu]

Who is responsible for assessing/identifying IT system risks and recommending/implementing backup plans to potential software failures?

No, IT down is an enterprise risk, that must be managed by the Risk department. Once that risk is evaluated, a plan has to be defined.

 

[Timo_Existencia]

It is called freedom, I know a word very unknown here.
The server is yours and you have the final authority to do whatever you want, under your responsibility.
You are not a USER, you are the SYSADMIN.

Do you get the difference?

You're describing one type of computer system, and there are options for the type of system you say you want.

A closed system is a different type of system that some of us prefer.

I get the difference. Do you?

 

[davide_eu]

You're describing one type of computer system, and there are options for the type of system you say you want.

A closed system is a different type of system that some of us prefer.

I get the difference. Do you?

Guy, the topic is that you don't spot the difference between USER and SYSADMIN.

 

[now i see it]

Geezus. This is like a SIM PIN lockout. The only way to unlock it is to call the cellular provider to get an unlock PUK code — but you can’t call because your SIM is locked.

Lesson learned- have a backup plan

 

[Timo_Existencia]

Guy, the topic is that you don't spot the difference between USER and SYSADMIN.

Or the topic is that you don't spot the difference between open and closed systems.

You have options for an open system. I prefer a closed system. You want to take my option away from me. I'm fine that you have the option you want.

 

[one more]

With automatic update ? You run an airport, a hospital with update cycles that you do not control ? That's what I do not understand.

You may be able to give it a “go ahead”, but you cannot possibly expect system admins to check the code offered by a 3rd party devs.

 

[Tago]

This. All of you saying "it's not Microsofts fault!" are missing the point entirely.

If Windows allows kernal access to 3rd party apps that have the ability to shut down your entire system with a single automated update, that's on Microsoft. Period. Full stop.

Others have mentioned that Crowdstrike works on Macs too; but can Crowdstrike access the core of the Mac OS in this same way? I can't ever remember a 3rd party app that brought down my entire Mac.

...and for those of you saying that the DMA and the EU can't have this affect...this is at the heart of why I oppose the DMA. The EU is putting their fingers into the core of OS operations.

Agree Microsoft is responsible for the facilitiation of 3rd party access given there`s no deviation (modifications / elevation) on end users hand. Given Crowdstrike delivers their software directly to end customers, they are responsible for the fault to the customer.
By "all accounts" it is Crowdstrike who have made the error, of course they are responsible for that. Whoever delivered the faulty update to customers are responsible towards them.

 

[iMac The Knife]

It was caused by a Crowdstrike update pushed to its Windows clients.

Yes, I know. This was sarcasm, but not very well played on my part.

 

[Jamie0003]

I'm surprised no one has blamed Tim Cook for this.

Damn that hacker Tim Apple!