|
2024-07-20 Cyber
|
|
Microsoft says root cause of global outage fixed
|
Direct Translation via Google Translate. Edited.
| Follow up to this and this about the Crowdstrike problem from yesterday. See also here. |
[Regnum] Microsoft announced on the X social network that it had fixed the root cause of the problems that led to global operating system failures.
It is noted that residual impact of the issue continues to affect some Microsoft 365 applications and services.
"We are taking additional troubleshooting steps," the American company added.
On July 19, many countries around the world experienced problems with Windows devices, with users complaining of the "blue screen of death" appearing on Windows 10 devices. The problem affected many companies and government agencies in Australia, the United States, Turkey, Ireland, India, the United Kingdom, Japan, and other countries.
In particular, the work of airports around the world was disrupted. In particular, the American company Frontier Airlines noted that problems arose with booking and registration, as well as access to boarding passes. The failure also affected the work of other airlines.
This problem did not affect Russia. Thus, according to the official representative of Rosaviatsia Artem Korenyako, the global technical failure of Windows did not affect the work of airlines and airports, they are operating in normal mode. Press Secretary of the President of Russia Dmitry Peskov at a briefing on July 19 said that failures in the Windows operating system (OS) did not affect the work of the Kremlin.
Experts have established that the failure was caused by the installed Crowdstrike protection systems. There, in turn, confirmed the existence of a connection between its software and mass failures in Windows. The problems arose with devices on which the latest Falcon Sensor update was installed. Experts are trying to "roll back the application to an earlier version," the company added.
More from regnum.ru
Information security expert Izbaenkov: Windows failure may be due to human factor
[Regnum] The actions of insider hackers could have been the cause of the global failure in the operation of devices with the Windows system. This opinion was expressed to a correspondent of IA Regnum on July 19 by Artem Izbaenkov, Deputy Director for Product Development of the Solar Group.
Many countries around the world, including Australia, the United States, Turkey, Ireland, India, the United Kingdom, Japan and others, are experiencing a failure in the operation of devices running the Windows system. Users have complained about the appearance of the "blue screen of death" on devices running Windows 10.
Izbaenkov stressed that this incident requires a thorough investigation. It is currently impossible to determine the exact causes of what happened.
According to CrowdStrike, possible causes of the failure could be errors during software updates. Such errors can occur due to human error or problems during the update testing process. As practice shows, untested or insufficiently tested updates can lead to catastrophic consequences, the expert specified.
He did not rule out that the cause of the failure could be a cyber threat in the form of insider hackers. They could have introduced an employee into the company who would have planted malicious code in the source files of the system. The expert noted that similar cases have already been recorded in Russia in large IT companies that were able to identify such employees. This method is especially dangerous, since it is difficult to detect an internal threat until the malicious code is activated, Izbaenkov added.
According to him, the failure could also be caused by complex cyber attacks on service providers. Currently, the dependence on cloud services and platforms such as Microsoft Azure is very high. Complex attacks on such services can cause a chain reaction of failures. This could be either a deliberate attack on the infrastructure or the exploitation of vulnerabilities in the software of partners and suppliers.
"Overall, the incident serves as a serious reminder of the importance of cybersecurity and the need for coordinated efforts to protect both internal and external systems. It is necessary to conduct a detailed investigation of each theory and take measures to strengthen defenses and prevent similar incidents in the future," the expert noted.
In turn, the Chairman of the Board of the Digital Economy Development Fund, German Klimenko, noted that a global failure in the operation of devices with the Windows system was bound to happen sooner or later, since many organizations use software products developed by one company.
"The world is immersed in software products created by one company. Hundreds of companies use this software, and there is a single update control center. Sooner or later, something like this was bound to happen," the expert noted.
According to one version, there was a glitch in the security software. Thousands of companies updated it without checking. As a result, there was a collapse. The network has already managed to call it a "rehearsal for doomsday," Klimenko added.
He stressed that all systems fail. There are no ideal software or hardware products. Any new technology always has both pros and cons. Now we are seeing the consequences of the introduction of digital technologies. A good system is characterized by the speed of error correction. The question is how ready this system is for recovery, he clarified.
According to the expert, security measures will probably be taken as a result of this incident. For example, Roskomnadzor of Russia requires that some companies and the Central Bank have their servers not in the clouds, but on the premises of institutions. This leads to an increase in the cost of infrastructure, but ensures security.
Klimenko noted that protocols may also emerge that will prevent mass software updates from breaching the security perimeter. In addition, new recommendations will be issued for companies such as airports and banks on how to ensure software updates and store duplicates or copies so that they are not at risk of being affected.
"In two years of special operations, Russia has separated itself from American software products. If something similar happens in Russia, it will indicate that some companies are still secretly using these products. The main critical infrastructure in Russia has been transferred to other products or isolated. Therefore, Russia is now in the position of an observer, since there is no interaction with the foreign software market," the expert emphasized.
As reported by the Regnum news agency, the Russian Ministry of Digital Development stated that there have been no reports of system failures at Russian airports. The department stated that the massive failure of the Windows operating system, which was developed by Microsoft, showed how important import substitution of foreign software is.
Banks and payment systems in at least four countries around the world have encountered problems due to a global Windows failure. The Crisis24 portal reported problems in the work of banks and payment systems in Australia and New Zealand. In particular, clients of the National Australia Bank, Commonwealth Bank of Australia, Bank of New Zealand and others have encountered interruptions in the work of online banking and electronic payments.
Representatives of the banks explained the failures by "problems with an external communication provider." In addition, the Bank of Israel reported problems in the country's financial institutions, and difficulties in work have also arisen for clients of South Africa's largest bank, Capitec.
At a briefing on July 19, Russian Presidential Press Secretary Dmitry Peskov said that the failures in the Windows operating system (OS) did not affect the Kremlin's work.
Rosaviatsiya official representative Artem Korenyako said that the global technical failure in the Windows operating system did not affect Russian airlines and airports, they are operating normally. As of 11:30 Moscow time, he specified, flights are operating on schedule.
Korenyako explained that domestic civil aviation began to implement Russian specialized software in its work several years ago as part of import substitution in the industry. The press services of Sheremetyevo and Domodedovo airports confirmed that the work of these air harbors is proceeding in a normal mode.
|
Posted by badanov 2024-07-20 00:00||
||
Front Page|| [11133 views ]
Top
|
|
Posted by badanov 2024-07-20 01:08||
2024-07-20 01:08||
Front Page
Top
|
|
Posted by Skidmark 2024-07-20 07:36||
2024-07-20 07:36||
Front Page
Top
|
|
Posted by swksvolFF 2024-07-20 11:22||
2024-07-20 11:22||
Front Page
Top
|
|
Posted by badanov 2024-07-20 14:57||
2024-07-20 14:57||
Front Page
Top
|
|
Posted by badanov 2024-07-20 16:06||
2024-07-20 16:06||
Front Page
Top
|
|
Posted by badanov 2024-07-20 16:41||
2024-07-20 16:41||
Front Page
Top
|
|
23:09 Chuck M
22:57 SteveS
22:52 SteveS
22:26 DarthVader
22:21 Skidmark
22:18 Skidmark
22:06 SteveS
22:02 Pancho Poodle8452
21:44 Skidmark
21:40 Skidmark
21:09 Airandee
20:42 Woodrow
20:19 swksvolFF
20:17 swksvolFF
18:46 Grom the Affective
18:40 DooDahMan
18:34 Frank G
18:25 Frank G
18:22 Grom the Affective
18:11 trailing wife
18:06 Hellfish
17:49 Grom the Affective
17:19 Abu Uluque
17:04 Abu Uluque
|
