Cybersecurity Incident Triggers Worldwide Air Cargo Delays
Published: Friday, July 19, 2024
July 19 (Reuters) – A software update wreaked havoc on computer systems globally on Friday, grounding flights, opens new tab, forcing some broadcasters off air and hitting services from banking to healthcare.
An update to a product offered by global cyberscurity firm CrowdStrike (CRWD.O), opens new tab appeared to be the trigger, affecting customers using Microsoft’s (MSFT.O), opens new tab Windows Operating System. Microsoft said later on Friday the issue had been fixed.
CrowdStrike CEO George Kurtz said on social media platform X that the company was “actively working with customers impacted by a defect found in a single content update for Windows hosts” and that a fix was being deployed.
“This is not a security incident or cyberattack,” Kurtz said in the post.
Early on Friday, major U.S. airlines – American Airlines (AAL.O), opens new tab, Delta Airlines (DAL.N), opens new tab and United Airlines (UAL.O), opens new tab – grounded flights, while other carriers and airports around the world reported delays and disruptions.
Banks and financial services companies from Australia to India and Germany warned customers of disruptions and traders across markets spoke of problems with executing transaction.
“We are having the mother of all global market outages,” one trader said.
In Britain, booking systems used by doctors were offline, multiple reports posted on X by medical officials said, while Sky News, one of the country’s major news broadcasters was off air, apologising for being unable to transmit live, and soccer club Manchester United said on X that it had to postpone a scheduled release of tickets.
Microsoft’s cloud unit Azure said it was aware of the issue that impacted virtual machines running Windows OS and the CrowdStrike Falcon agent getting stuck in a “restarting state,” amid an ongoing global outage.
“We’re aware of an issue affecting Windows devices due to an update from a third-party software platform. We anticipate a resolution is forthcoming,” a Microsoft spokesperson said.
In an alert to clients issued at 0530 GMT on Friday, CrowdStrike said its “Falcon Sensor” software was causing Microsoft Windows to crash and display a blue screen, known informally as the “Blue Screen of Death”. It also shared a manual workaround to rectify the issue.
Over half of Fortune 500 companies used CrowdStrike software, the U.S. firm said in a promotional video this year.
“This is a a very, very uncomfortable illustration of the fragility of the world’s core Internet infrastructure,” said Ciaran Martin, Professor at Oxford University’s Blavatnik School of Government and former head of the UK National Cyber Security Centre.
The outages rippled far and wide.
Airports in Singapore, Hong Kong and India said the outage meant some airlines were having to check in passengers manually.
Amsterdam’s Schiphol Airport, one of Europe’s busiest, said it was affected, while airline Iberia said it had been operating manually at airports until its electronic check-in counters and online check-ins were reactivated. It said there had been some delays but no flight cancellations.
Air France-KLM (AIRF.PA), opens new tab said its operations were disrupted.
The Dutch foreign affairs ministry told Dutch press agency ANP it had been affected. A spokesperson was not immediately available for comment.
While there were reports of companies gradually restoring their services, analysts weighed the potential of what one called the biggest ever outage in the industry and the broader economy.
“IT security tools are all designed to ensure that companies can continue to operate in the worst-case scenario of a data breach, so to be the root cause of a global IT outage is an unmitigated disaster,” said Ajay Unni, CEO of StickmanCyber, one of Australia’s largest cybersecurity services companies.