Cyber security giant CrowdStrike made its first official statement to the US Congress following the software update disaster that occurred last July and caused global IT outages. The company stated that they are deeply saddened by the situation.
Crowdstrike also gave details about the process
World-renowned cyber security company CrowdStrike apologised for the first time after a faulty software update caused millions of Windows devices to crash. The situation brought many problems, including the cancellation of thousands of flights, passengers being stranded at airports, emergency service lines being interrupted and even the cancellation of some surgical operations.
Adam Meyers, Senior Vice President of the company, made the announcement at a cybersecurity subcommittee hearing in the US House of Representatives on Tuesday. After CEO George Kurtz declined the invitation, Meyers was forced to explain the situation and the measures the company will take to prevent the recurrence of such errors in the future.
Meyers stated that the incident, which began on 19 July, was caused by the failure of a threat detection update released for Microsoft Windows devices. ‘We release between 10 and 12 such updates every day,’ Meyers said, explaining that the problematic update contained ’a mismatch between input parameters and predefined rules.’
Meyers said the following so that technical details can be understood by users: ‘It’s like trying to move a piece on a chessboard to a square that doesn’t exist. When the sensor tried to evaluate the rule, it couldn’t do what the rule wanted and this caused a problem with the sensor.’
After this incident, Microsoft announced that it is considering moving antivirus and threat detection updates to the user mode level instead of the kernel. In this way, it is predicted that similar major incidents can be prevented. CrowdStrike, on the other hand, committed to follow a more careful update process after the incident.
The outcome of the case and the compensation to be paid for the giant company is already a matter of curiosity. Do not forget to share your opinions in the comments.
{{user}} {{datetime}}
{{text}}