تحقيقات وربما عقوبات على crowdstrike بسبب العطل الفادح

 On July 19, 2024, the world woke up to the news of flight cancellations at airports around the world, such as Spain, the Netherlands, England, and America, in addition to the disruption of the work of banks, news agencies, and even hospitals were not spared from the problem .
So what happened?
 Airports, banks, and media agencies operate on servers that run on the Windows operating system. To protect these important servers from #hacking, companies purchase #protection_software. In order for the user to protect his device from #hacking or viruses, he must download an anti-virus program and install it on the device. So what if we had a giant company with nearly forty thousand employees? Antivirus will not work, and it must resort to specialists in software that can support different operating systems and is easy to download, manage, and monitor. This is the role of companies such as CrowdStrike#, which specializes in protecting companies through its own #cybersecurity software. The most famous of these is Falcon, which is a protection program that is downloaded to #servers and employees' devices to protect them from #hacking operations using advanced technologies .
Returning to the malfunction that occurred at the airports, initial reports said that the #hacking occurred at CrowdStrike # through a #security_loophole in its systems that led to a DDoS attack on its servers, which was denied by more than one party, most notably specialists, headed by George Kurtz, owner of CrowdStrike# and CEO of the company, where he announced that the reason behind this disaster was a faulty update that caused the appearance of the blue screens of death, or what is known as the Blue Screen of Death, as shown in the images attached to the post. As well as the #servers entering an endless stage of restarting to no avail. This malfunction caused millions of devices around the world to go out of service, including airport systems, banks, ATMs, news agencies, hospitals, and other corporate systems .
  It is worth noting that the problem only affects the Windows operating system, while servers and devices running Linux and Mac were not affected. The company has already issued a solution and deployed the update to the servers affected by the technical problem. However, thousands of companies have deleted CrowdStrike's protection programs, which now leaves the servers of thousands of companies without protection and vulnerable to hacking. In addition, Microsoft shares lost $60 billion in market value due to the technical failure, as reported by CNBC Arabia .

Who is responsible for this outage that has paralyzed several vital ports?

It's the human factor, that is, one of the #crowdstrike employees downloaded an update on the devices that led to such a failure that affected several ports.

Information security consultant Roland Abi Najm stressed on several media platforms that there is no escape from these errors, because there is no 100% protection and security in #cybersecurity, and the introduction of #artificial_intelligence into the game has exacerbated the problem. Roland said, "We have to get used to such challenges."

CyberX sources indicated that investigations into this hack are ongoing and that CrowdStrike and Microsoft may have to compensate those affected with financial amounts, especially since the error was human and within the company.

As for solutions, the diversity of service providers may be the best solution to avoid this number of companies and institutions being tied to one cybersecurity company and subject to its fate under circumstances similar to what happened with #crowdstrike .