CrowdStrike says fix deployed for issue causing global tech outages
Вставка
- Опубліковано 6 вер 2024
- Industries and individuals relying on Microsoft software around the world suffered an outage Friday caused by a technical problem that global cybersecurity firm CrowdStrike said it had identified in its software and deployed a fix for. CrowdStrike provides antivirus software to Microsoft for its Windows devices. Tony Anscombe, chief security evangelist for ESET, joined CBS News to discuss the issues.
CBS News 24/7 is the premier anchored streaming news service from CBS News and Stations that is available free to everyone with access to the internet and is the destination for breaking news, live events, original reporting and storytelling, and programs from CBS News and Stations' top anchors and correspondents working locally, nationally and around the globe. It is available on more than 30 platforms across mobile, desktop and connected TVs for free, as well as CBSNews.com and Paramount+ and live in 91 countries.
Subscribe to the CBS News UA-cam channel: / cbsnews
Watch CBS News 24/7: cbsnews.com/live/
Download the CBS News app: cbsnews.com/mo...
Follow CBS News on Instagram: / cbsnews
Like CBS News on Facebook: / cbsnews
Follow CBS News on X: / cbsnews
Subscribe to our newsletters: cbsnews.com/ne...
Try Paramount+ free: paramountplus....
For video licensing inquiries, contact: licensing@veritone.com
IT people are under appreciated, the entire field is completely misunderstood by anyone outside of IT meaning 99.9% of the world has no idea the amount of work, training, responsibilities, risks involved. IT isn't considered essential until things like this happen, and once we fix it, the hard work is forgotten, and back to working 15 hr days for crappy salaries and fighting with HR for raises and fighting with administration for more money to keep things secure and stable because normal again. Been in it for 30 yrs. Thankless job
My experience is exactly, more skilled and technical than any regular person or most soo called high paying jobs. The only time you get a meeting with your manager is when something goes wrong not the thousands of rhings youve done good . Underpaid asf yet i have tonnes of certs and experience
Couldn't agree more. When things run smoothly without any issues, nobody thanks IT. When things happen, even minor, everybody blames IT.
@@SnarMartirosyan I love the job but hate how underpaid it is, extremely technical, firewalls, troubleshooting, switch vlan , port security etc and paid barely over minimum wage meanwhile a teacher or solicitor paid double and doesn't have half the brain or ability it's downright corrupt. Alot of the high paying it work is in dev ops and management management jobs almost impossible to get without exp. Third line support which is the highest level just paid slightly more than a teacher and all the areas they need to knows 365, network design, VMware backups, Cisco, hp, tp link switches , all types of different firewalls. It's corrupt asf and disgusting how these unskilled workers are paid more. It's the most technical and skilled field in any work industry no debate
Thank you for your work
I worked at an IT company once, but it was easy, we gave licences to people aka computers, and I know also that people in companies rely strongly on the IT people, they are doing a lot.. behind the scenes. I am not an IT person actually and the job was a short one but I could see a bit what was going on or is going on. So I also understand that it will be more complicated than people think cause only IT guys can fix it in certain companies, or let say, they will sure be the only ones who can deal with this issue and that makes it look bleak, they all will have to wait for the IT guys to arrive... they usually have to come in and people can't work for the time they work on the computers. One can only say, have fun, guys.. 😑☺
I WORK I.T. at a Fortune 100 Company. Today has been a huge mess for us. We have to fix each Server, Desktop, and Laptop that Blue Screened one by one. It's going to take days. Users are not happy.
It's even worse Considering it happened on a Friday. It would've suck any day of the week but IT employees are tired by now and so it sucks even more
Hope you not a Trump supporter
@@user-bm4ic4kx2w Trump supporters don't work in I.T. - Because it takes intelligence and a college education.
Ooooof sucks to suck
Same situation- feel your pain
Too much power in the hands of one company. That's what happens when you put all your eggs in one basket.
I'm shocked more people aren't seeing this issue.
@@cdchannel People want to keep pointing fingers at crowdstrike like it isn’t Microsoft’s fault when in fact IT IS TOO THEIR FAILT AS WELL. They would be wise to make sure they diversify their security, because to not do it at this point is an invitation to another disaster🙈
My employer is a tech company with emphasis on security and all employees use Windows, but we don't let whatever update Microsoft pushes to be installed right away. The company has a dedicated to team that tests Windows updates first and then pushes to employee computers.
It wasn't a MS update. It was a crowdstrike update.
Hope they have some billions set aside for the incoming lawsuits
maybe they can blame it on chatgpt, "AI didn't test my code correctly" sad
Reserve funds depleted lol
nah, I'm sure everyone clicked ACCEPT on the license agreement which said they aren't responsible for any issues.
@@brianm2238 no waaait, that is gone from the update. What are you talking about?🤷♂️😉😂
Stop using 3rd-party cloud stuff and turn-off automatic updates.
Well said!
and your now vulnerable to the 50 new hacks created this month?
oh you forgot to manually update for last 6 months and now are ransomwared?
@@EvanMcLean55 There is software to deploy the suggested security updates by manufacturer, businesses, for apps, opetating system, and test them agsinst the software your business uses as well as the operating system. Not just have business x push them out without testing…
yikes that is rough. whoever had to fix this, I feel for ya, It must have been a LONG day.
Bs, you cant push the update to systems which already blue screened. You need to delete a file in safe mode before the system can boot.
My question is the testing process for this deployment, including roll-out to good small representative sample of workstations first.
Correct. I wonder what the fraction of affected machines is. Is this number 90% or 1%? If it's 1%, a small sample may not have caught it. In this case a gradual rollout would have at least helped. If it's 90%, a small sample would have caught it. I'm interested in how this all shakes out.
This is a wake up call to the world. We can't rely solely on computers for our daily lives. There always must be a manual back up system in place.
Bring back Morse code
The problem is relying on one single company for security.
THERE IS NO FIX DEPLOYED!!!! YOU NEED TO PHYSICALLY WALK TO PC AND DELETE AFFECTED FILES. THIS IS A LIE.
They just said that in the video. Manual setup needed to fix this issue.
Hi, I’m the CEO of Crowdsource. So you calling me a liar?
This is what you get when companies replace humans with AI.
We need AI ..is a must 👌🏻
No, not this. The AI fallout will be MUCH worse
Yes AI is the way to go. This could never have happened if it was controlled by AI.
The same feeling over here as well.
This outage did not take anyone's data. It made the host computer that can use the cloud for storage to shut down in a coding error. No data was pirated or could be pirated by the vendor.
My friend who works in IT is prolly working overtime right now.
Ummmm you can't apply the fix if your machine has the BSOD. 9hrs so far on my outage bridges.
Yea that I was thinking the same😅😅😅
Yep, would need to do steps on the computer to get rid of this update for the computer to boot.
We did everything by pen/paper today😮
I wonder if this is part of a scheme to affect the stock market and for hackers to profit from this so-called "system error".
Yep, as this guy says, there is no real "fix" outside of our manual intervention. CrowdStrike might call it a fix, but that does not fix what has already been broken. We need to go and delete that file from the command prompt from the recovery environment as I had been doing for hours today...
I laughed when I saw them publish the fix. Saw a post by one guy saying he has 35000 servers.
@@jonboy2950 blessed be him name 😂😂😂😂
Surely this is end for crowdstrike theyll have trillions in lawsuits the company will fold
For all the people who say this is what happens.
Really?
Seems pretty significant to me, and at a global level?
No, this isnt something that just happens.
No matter the reason.
It is good to acknowledge our moments of weakness.
Its how we keep stuff in order.
Do not normalize poor quality control.
I just find this incredibly funny. I hope this results in Microsoft selling off their stuff.
Maybe then Minecraft can be a game with actual updates and UA-camrs who aren’t pedos.
companies used to vet their own security patches and test them, then came the "service" industry and the "service" does it for you and it becomes global and takes the local IT out of the mix except when there are problems, but the "real fix" is when they GLOBALLY push it out. The Global Centralized needs to go back to Decentralized and let business who know their business take care of their business and test the patch for THEIR environment! There wouldn't be worldwide outages if business went back to taking care of things themselves.
It'll take weeks to implement.
The crazy thing is that it was real-time across all the PCs worldwide. Pretoria, South Africa.
Humanities modern downfall is an overreliance of technology.
I think our two-party hostility system in the most powerful nation is a bigger threat but ok
@@Cubeytheawesome That has been going on for so many decades now?🙈😂
CrowdStrike. Talk about truth in name.
It's pretty safe to assume that the big orange box retailer I work for has Crowdstrike because some of our computers had the BSOD this morning. The problems were also affecting customer order apps.
Servers are the easy part if the company that owns them has invested in management modules that allow remote connections (before the OS even boots). Hard part is the thousands of end user laptops and computers whereby someone will have to enter recovery mode (with Bitlocker recovery key - so hope organizations have that manged), and delete the bad file, and reboot. This cannot be done remotely.
Every day, thousands of new software releases are launched worldwide, with some potentially lacking adequate testing and requiring rollback. Today's CrowdStrike Falcon release significantly impacted many organizations that depend on CrowdStrike for security services. Therefore, news media should emphasize what public and private sector organizations can (and should) do to mitigate risks and vulnerabilities associated with new software releases
Too many programming languages, too many software releases, too many things to learn. At the end no one is an expert.
Doesn't help if your device is already Blue Screened... 😅
We are going to hear a lot of BS from IT people.
Not named crowd strike for no reason
crowd stroke
im selling all my shares
My toyota corolla which runs on windows 2000 turned off on the highway.
Wow really?
Something I've not seen touched on concerning this outage... is the fact that so many vital industries seem to be using the ONE SINGLE cybersecurity company. This is unbelievably dangerous, as this outage shows... but also because it puts too much of the world's security under one single firm, making it far easier for hackers to attack.
My company is too cheap for CrowdStrike, so we are unscathed hahahahahhaaA
😂
and that fix is cocaine
We don’t push huge updates like this on Fridays!!!! This makes no sense it’s lies!!!!
Is it better on Mondays?
@@jakobole there are just certain things real professionals don’t do on Fridays. Whether it’s superstition or logic that dictates, it’s just an unwritten rule. If you saw the CEO having a panic attack on live tv this morning and barely able to compose himself, you would see that is more serious than anyone is letting on so far
@@jakobole Not for the IT guy who wants the weekend off 😂🙈
4:34 No it won't. They will forget all about this as soon as their computers are back up and running.
Just like LastPass
This all goes to show … the update frenzy is crazy. Let someone else take the risk of doing updates and wait until it’s safe until you update.
Doesn't Canada rate a mention???? We are affected too.
Nah problem seems to be confined to US borders. That was just mild sarcasm, it's causing havoc here in Australia too.
Was the Crowdstrike update written by AI??
No intelligence, artificial or otherwise.
@@Bonjour-WorldIsraeli one!
@@jazminew38 Cyprus Two !
MS need to put crowdstrike out of business
"The only way to fix 'Windows Update' is to get rid of Microsoft Windows" !!!
They need to diversify their security, now the company is a target 🙈SMH
Microsoft is running their "services" similiarly... things need to go back to the local client and huge corporations needs to keep their hands off global pushes and let local IT take care of their own environment
Honestly Microsoft needs to do more. This affected the whole world, so they will need to sell off a lot.
@@Cubeytheawesome Crowdstrike was the one with the faulty patch - services instead of on the client is the another real problem.
It becomes self-aware at 2:14 a.m. Eastern time, August 29th
Controlling the masses, next digital currency?
This is ridiculous
Why
Wouldn't techs still have to go to each computer to stop them from continuously rebooting
Why didn't he answer the last question.?.? Probably because no I.T. professional would ever do a mass update across the board on major critical systems. Especially, Airlines, Banks, First Responders. Something larger is at play. CrowdStrike is way better than that I know.
Payroll got messed up at work adp having issues. Today was pay day but monday is when it will get to banks.
The network should ask and government regulator should check to see if adequate testing of the latest rollout was performed before giving to all these customers.
If it can’t be proven that they did adequate testing then it is safe to assume they did not. That’s a pretty high level of incompetence if testing wasn’t done.
On the face of it being such a widespread problem that wasn’t caught early, questions have to be asked.
In Tyler we tryst
Interesting
ESET is top notch. Most likely the best AV company in years. Hope they don't make the same mistake.
Crowdstrike made a misleading claim that it deployed the fix. Most of these computerS were stuck on a blue screen (BSOD). A person needs to manually reboot every machine in safe mode and go to the crowdstrike directory and delete the file. It's time consuming. Imagine how many computers are affected in the world.
I didn't even notice anything.. but there again I don't use Windows😂😂
IT folks just need to boot up the machine and uninstalled that upgrade.
I wonder on WHY other computer Operating Systems like Google Chrome Mac OSX and Linux OS along with Amazon Fire OS Were never affected by this!?
Skynet is currently online and looking for the virus. Everything will be back to normal soon.
Rock in roll 😎👍buckle up sheep 🐑 watch Bluewater and C21👽🛸🤠
There is no "fix deployed" they simply stopped the update from bricking thousands if machines a second... The "fix" is a bandaid workaround that must be implemented on every single machine manually. Crowdstrike has absolutely no way to fix any machine that was corrupted and bricked by its update prior to them halting their intentional attack. Anyone who believes this was unintentional has a severe intellect deficiency. The gravity of this situation cannot be understated or downplayed. This was the single largest computer breach in human history.
Guess we should expect to see a Ninjeo about this.
Is Kimberly Cheatle the head of CrowdStrike, also?? I'm asking for a friend...
The empire strikes back.
Yeah, once you have an update going to your system and it screws up the system. You can’t just turn on the system and think it’s gonna work again when you get a new update remember your system is broken. You have to boot your computer in safe mode usually remove one update and install a new update. it’s one thing to have to do that for your household, but imagine having to do it for every computer that was affected in your business. That is going to take time and effort.
And servers too.
4:12 - "...but, it's also important that businesses have cyber-resilience... being able to operate when the internet is down."
Wait. In 2000, you all told them to hop on the internet... and now you're telling them to get used to no-internet... this is the Hokey Pokey!
"white rabbit object. Whatever it did, it did it all. But with the key checks off the computer didn't file the keystrokes. So the only way to find them now is to go through the computers lines code, one by one. How many lines of code are there? Bout' 2mllion" *blows smoke at computer screen
Trust us!
If one company can cause this much global carnage it should not wield so much power
This was a test to see if we are on path to being fully controlled 😄
So the expert that brought in for more information basically said “ we don’t know”? Seriously? I don’t know either so what makes him any expert for this case ?
why does everything have to be political
@@johnnybu lol you are the first comment thats political. bots are hilariously bad these days.
An expert that says "we dont know " shouldn't be weird , only scam artist have an answer to everything , specially in something that is not yet finished. Good information cant be fast and cheap .
@@GardenisLife I responded to the wrong poster. There was someone who was commenting about DEI
😂 deployed to who ? The people can’t login 😢😢😢😢
Wow. Using big words like "deployed," they must know what they're doing.
So basically we got hacked ?
Testing our digital nuke for the first time.
Crowdstrike just testing AI to write the code lmao.
Uninstall everything and reinstall everything
Everyone stop complaining. It's just an "Issue".
Is it wrong I find this incredibly hilarious?
ESET removes anything it thinks is a virus with no chance of recovery. This is how I lost a whole folder of self written utilities I use on a regular basis, don't run ESET if you are a programmer that writes programs that do special things, ESET will think it's a virus.
LMAO restarting tens of millions of Windows machines into safe mode individually and rolling back the OS one by one. Looks like hundreds of IT directors won’t be seeing their families this weekend. Somebody at Crowdstrike is so losing their job.
2:18 Today is July 19th united states central time stamped
Interesting too that the company that caused this problem is called "CrowdStrike".... think about that for a minute.
Like watching an episode of Mr Robot
Woohoo! All my criminal records & debt got erased. ❤CrowdStrike & Microsoft
should have stuck with dell
if you think dell isnt effected by this, you might be too far gone. lol seriously? tell me you are trolling... please.,. even just to save face... your trolling right?
So all companies should either use IOS from Apple , ir run Linux!! Diversify the software and hardware !! Cant always rely on MSoft . Ever since WIN 11 , i loved NT 98 , 10. Blame Kamala , the IT czar , and border czar , recently gun czar !!
Blue Friday
Did they test the SW before implementation. Such a dumb mistake when it’s from what they called cybersecurity. Is it a cyber joke!
Only an American company could do this... America is a joke anymore
Microsoft's legendary 'blue screen of death' strikes again. Just switch to Linux and be done with it!
I’d would have recommended opera gx, but Sadly, despite how funny they are, it’s spyware
It doesn’t matter what Crowdstrike does. The Windows kernel cannot just crash because an application misbehaved. This is entirely Microsoft’s fault due to the low quality of their operating system.
Perhaps the CrowdStrike code runs in ring 0 in the kernel, since it's anti-virus. In other words, this isn't just a usual application.
@@randyp3871 Microsoft are still responsible for allowing anything to run in kernel space and bring the entire OS down as a result.
"The only way to fix 'Windows Update' is to get rid of Microsoft Windows" !!!
It's not a windows update issue
Spirit realm is not playing games with BILL GATES of MICROSOFT.!!!
WRONG GATE.!!!
YALL PLEASE MIND THE SIGNS AROUND THE CONSTRUCTION ZONES!!!!
What?
Hack or a faulty update? Advise to IT people, next time stick to your original version of the story no matter what it may be. Don’t give a conclusive result unless you’re absolutely sure. Otherwise your going to raise a lot of eyebrows from a world that is already pretty familiar with how technology reacts under certain scenarios. SMH.
" Fix Deployed " 😂🤣😄😂🤣
what a not so clever deflection . " deployed " has no time limit associated with it !
Y2k bug
" IT"...
NO LONGER MEANS THE I.T. GUY.....😂
Jesus Is King 👑
The Anti Virus Virus
How are Russia and China??
No problem there as my friends over there, tell me. Looks like an Israeli job but they'll blame it on Iran as they blamed Trump assassination on Iran Hilarious 😅
Does any one trust what this guy is saying?
MICROSOFT LAID OFF THEIR DEI TEAM 5 DAYS AGO, IS DEI HIRES REACTING TO THE WRITING ON THE WALL?
This is not about MS. It is Crowdstrike
@@trailerhaul8200 It was through MS updates. its absolutely about MS just as much as it is microsoft....
Don't discount Microsoft they could be to blame. They write the programs. Just saying.@@trailerhaul8200
why does everything have to be political?
Seriously this is what you report! People missing their elective surgeries was hampered. You got a long way to go to get to actual journalism