Get all your news in one place.
100’s of premium titles.
One app.
Start reading
Top News
Top News

Crowdstrike Releases Root Cause Analysis Report On IT Outage

Faulty CrowdStrike update caused widespread disruptions and system crashes.

CrowdStrike has recently published a detailed Root Cause Analysis (RCA) report shedding light on the significant IT outage caused by a faulty update. The report builds upon the initial Post Incident Review and offers a comprehensive investigation into the incident.

The outage, triggered by a flawed CrowdStrike update, resulted in widespread disruptions and system crashes, including the infamous blue screen of death on Windows machines. The RCA report delves into the underlying causes of the error and acknowledges shortcomings in the testing process.

The issue stemmed from a new feature introduced to the CrowdStrike Falcon sensor in February, aimed at enhancing threat detection capabilities. However, a discrepancy in input fields during an update deployment in July led to an out-of-bounds memory read, ultimately causing system failures.

CrowdStrike has outlined a series of corrective measures in response to the incident. These include enhancing testing procedures, implementing additional validation checks, and providing customers with more control over update deployments. The firm also plans to engage third-party security vendors for further code review and quality assurance.

Experts have commended CrowdStrike for its transparency in addressing the root causes of the outage and taking proactive steps to prevent similar incidents in the future. The firm's commitment to learning from the incident and improving customer protection has been highlighted as a positive outcome.

While the RCA report spans 12 pages, cybersecurity professionals have emphasized the importance of staged deployment for template instances to mitigate risks associated with global software rollouts. The need for robust testing processes, especially for critical infrastructure and government clients, has been underscored as a crucial aspect of software development.

Overall, CrowdStrike's response to the outage, as detailed in the RCA report, reflects a commitment to enhancing operational resilience and customer trust. By implementing stricter testing protocols and offering greater deployment control to clients, CrowdStrike aims to bolster its security measures and prevent future disruptions.

Sign up to read this article
Read news from 100’s of titles, curated specifically for you.
Already a member? Sign in here
Related Stories
Top stories on inkl right now
Our Picks
Fourteen days free
Download the app
One app. One membership.
100+ trusted global sources.