CrowdStrike Outage July 2024 - Technical Summary of What Happened

An update to CrowdStrike Falcon Sensor on 19 July 2024 caused about 8.5 million Windows machines (estimated) to hang and show BSOD (Blue Scren of Death). A fix was pushed out later that day but the machines that went down had to be manually fixed (as of this writing). Here’s a technical summary of what happened based on Dave Plummer’s video below:

Remedy

For the affected machines, only manual fix is available. The steps are:

Prevention

There’s a setting in the Falcon Sensor to delay the update for upto 3 months. The default unfortunately is set to immediate update.

Video

Postscript

Here’s an interesting way an Australian Tax Firm used barcode scanners to read the long BitLocker keys! https://www.theregister.com/2024/07/25/crowdstrike_remediation_with_barcode_scanner/

Reference

CrowdStrike July 19 Outage Updates Page:
https://www.crowdstrike.com/falcon-content-update-remediation-and-guidance-hub/

💣


Follow me on Twitter, LinkedIn, Instagram. Read about what else I do.

Previous Post
Next Post