Tuesday, November 26, 2024

Microsoft outages caused by CrowdStrike software glitch paralyze airlines, other businesses. Here’s what to know.

Must read

Banks, airlines, television networks and health systems around the world that rely on Microsoft 365 apps reported widespread outages Friday. Thousands of flights and train services were cancelled globally, including more than 1,000 in the U.S., and there were disruptions to many other public and retail services. 

Here’s what we know about the outages:

What caused the global Microsoft outages?

The issue was caused by a technical problem that global cybersecurity firm CrowdStrike said it had identified in its software and was working to resolve. CrowdStrike provides antivirus software to Microsoft for its Windows devices.

“The underlying cause has been fixed, however, residual impact is continuing to affect some Microsoft 365 apps and services. We’re conducting additional mitigations to provide relief,” Microsoft said in a statement posted on social media.

When CBS News called CrowdStrike’s technical support line Friday, a pre-recorded message said the company was aware of reports of crashes on Microsoft systems related to its Falcon Sensor software.

In a statement shared Friday with CBS News and on social media, CrowdStrike CEO George Kurtz said the issue had been identified and a solution was being implemented.

“CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts. Mac and Linux hosts are not impacted,” Kurtz said. “This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed.”

Long lines of passengers form at check-in counters at Ninoy Aquino International Airport amid a global IT disruption caused by a Microsoft outage and a CrowdStrike problem July 19, 2024, in Manila, Philippines.
Long lines of passengers form at check-in counters at Ninoy Aquino International Airport amid a global IT disruption caused by a Microsoft outage and a CrowdStrike problem July 19, 2024, in Manila, Philippines.

Ezra Acayan/Getty Images


What has been affected by the Microsoft outages?

Over 1,000 flights had been cancelled within, into or out of the U.S. as of Friday morning, and more than 2,000 others were delayed, according to the the flight tracking service, FlightAware. Globally, more than 21,000 flights were delayed early Friday, and that number was expected to rise.

American Airlines, Delta Air Lines, United Airlines resumed at least some flight departures later Friday morning after pausing operations earlier in the day due to the outages.

“We are resuming some flights but expect schedule disruptions to continue throughout Friday,” United Airlines said in a statement.

In Europe, Lufthansa, KLM and SAS Airlines reported disruptions. Switzerland’s largest airport, in Zurich, said planes were not being allowed to land, according to CBS News partner network BBC News. 

In India, at the country’s primary airport in Delhi, everything was being done manually. No electric check-in terminals were functioning and gate information was being updated by hand on a white board, the BBC reported.

Global IT outages at Newark International Airport
United Airlines employees wait by a departures monitor displaying a blue error screen inside Terminal C at Newark International Airport, after United and other airlines grounded flights due to a worldwide tech outage caused by an update to Crowdstrike’s “Falcon Sensor” software that crashed Microsoft Windows systems, in Newark, New Jersey, U.S., July 19, 2024.

Bing Guan/REUTERS


Hospitals in Germany said they were cancelling elective surgeries Friday and doctors in the U.K. said they were having issues accessing their online booking system. Pharmacists in the U.K. said there were disruptions with medicine deliveries and accessing prescriptions. 

The London Stock Exchange said it had experienced disruptions to its regulatory news service, but that trading had not been impacted. A spokesperson for the New York Stock Exchange said markets were fully operational and a normal opening was expected.

When will the Microsoft outages be fixed?

New Zealand’s acting prime minister David Seymour said on social media that officials were working hard to understand the impacts of the wide-ranging outages.

“I have not currently received any reporting to indicate these issues are related to malicious cyber security activity,” Seymour said.

A spokesman for Germany’s interior ministry also said there was no indication that the outages were due to a cyberattack, Reuters reported.

But even with the fix being implemented by CrowdStrike, some of the problems caused will likely take time to fix, Chief Information Officer at identity security firm CyberArk, Omer Grossman, told Reuters. He said the reason for this is that the problem has to do with Endpoint Detection and Response (EDR) products that run on individual client computers.

“It turns out that because the endpoints have crashed — the Blue Screen of Death — they cannot be updated remotely and the problem must be solved manually, endpoint by endpoint. This is expected to be a process that will take days,” Grossman said.

Latest article