US cyber agency CISA says malicious hackers are 'taking advantage' of CrowdStrike outage

Zack Whittaker

July 19, 2024 at 7:55 PM·2 min read

As much of the world slowly gets back online after an outage caused by cybersecurity giant CrowdStrike led to global travel and business gridlock, malicious actors are also trying to exploit the situation for their own gain.

U.S. cybersecurity agency CISA said in a statement Friday that though the CrowdStrike outage was not linked to a cyberattack or malicious activity, it has "observed threat actors taking advantage of this incident for phishing and other malicious activity."

CISA warned individuals to "avoid clicking on phishing emails or suspicious links," which can lead to email compromise and other scams.

It's not uncommon for malicious actors to exploit chaotic situations to carry out cyberattacks, especially campaigns that can be easily created and customized at short notice, like email or text phishing.

One security researcher on X, formerly Twitter, said malicious actors were already sending phishing emails using a variety of domains that impersonate CrowdStrike. One of the emails posted falsely claimed it could "fix the CrowdStrike apocalypse" if the recipient paid a fee worth several hundred euros to a random crypto wallet.

In reality, the only working fixes are either to repeatedly restart affected computers in the hope that they stay on long enough for the newly fixed update to download and install, or manually removing the defective file from every bricked computer.

Social engineering expert Rachel Tobac, who founded and heads cybersecurity firm SocialProof Security, said in a series of posts on X that criminals will also use the outage as cover to trick victims into handing over passwords and other sensitive codes.

"Remember: verify people are who they say they are before taking sensitive actions," Tobac said.

Early Friday morning, a defective software update released by CrowdStrike caused a countless number of Windows computers running the company's anti-malware and security software to crash. CrowdStrike said the bug has been fixed, but warned that the need to manually remediate each affected computer could result in lasting outages.

CISA said it was "working closely with CrowdStrike and federal, state, local, tribal and territorial partners," as well as critical infrastructure and its international partners to help with fixes.

Engadget
Outage caused by CrowdStrike’s disastrous update affected 8.5 million devices
The global outage caused by a faulty update from cybersecurity provider CrowdStrike on Friday affected some 8.5 million Windows devices, Microsoft said in a blog post.
TechCrunch
CrowdStrike’s update fail causes global outages and travel chaos
This week saw one of the most widespread IT disruptions in recent years linked to a faulty software update from popular cybersecurity firm CrowdStrike. Businesses across the world reported IT outages, including Windows “blue screen of death” errors on their computers, impacting airlines, banks, retailers, brokerage houses, media companies and railway networks. The USPS was caught sharing the postal addresses of its online customers with Meta, LinkedIn and Snap.
TechCrunch
Faulty CrowdStrike update causes major global IT outage, taking out banks, airlines and businesses globally
Businesses across the world are reporting IT outages, including Windows "blue screen of death" errors on their computers, in what has already become one of the most widespread IT disruptions in recent years. The outage — linked to a software update from popular cybersecurity firm CrowdStrike — has affected computers running Microsoft Windows at organizations across various sectors, including airlines, banks, retailers, brokerage houses, media companies and railway networks. CrowdStrike's chief executive, George Kurtz, confirmed in a post on X that a "defect" in a content update for Windows hosts had caused the outage, and Kurtz ruled out a cyberattack.
TechCrunch
Microsoft says 8.5M Windows devices were affected by CrowdStrike outage
Around 8.5 million devices — less than 1 percent Windows machines globally — were affected by the recent CrowdStrike outage, according to a Microsoft blog post by David Weston, the company’s vice president of enterprise and OS security. Although the number of affected devices was relatively low, the havoc was widespread and global, affecting banks, retailers, brokerage companies, rail networks, and more.
Yahoo News
Microsoft outage: CrowdStrike security update impacts airports, hospitals, banks around the world
A massive technology outage has impacted computer systems around the world. Here's what we know.
TechCrunch
What we know about CrowdStrike's update fail that's causing global outages and travel chaos
A faulty software update issued by security giant CrowdStrike has resulted in a massive overnight outage that’s affected Windows computers around the world, disrupting businesses, airports, train stations, banks, broadcasters and the healthcare sector. CrowdStrike said the outage was not caused by a cyberattack, but was the result of a "defect" in a software update for its flagship security product, Falcon Sensor. The defect caused any Windows computers that Falcon is installed on to crash without fully loading.
Yahoo News
See how the CrowdStrike security update outage impacted travel at airports around the world
In the U.S. alone, more than 26,000 flights have been delayed and more than 2,000 canceled.
TechCrunch
From the Sphere to false cyberattack claims, misinformation runs rampant amid CrowdStrike outage
On Friday morning, as the East Coast woke up to one of the most widespread IT disruptions ever due to a faulty CrowdStrike update, a priceless image circulated across X, accumulating millions of views. It appeared that the Sphere — the ostentatious new addition to the Las Vegas skyline, with 580,000 square feet of programmable LEDs on its exterior — had succumbed to the blue screen of death. It would be easy to believe this photo was real; after all, we're seeing images of the blue screen of death in airports and hospitals around the world.
TechCrunch
The CrowdStrike outage is a plot point in a rom-com
Around the world, thousands of people like Nicole have had a wrench thrown into their plans due to this outage, which knocked out countless computers running Microsoft Windows. “We were a little bit nervous about [transporting the engagement ring] anyway, but then this just added a whole layer of complexity to it,” Nicole told TechCrunch. Now, the Delta flight she planned to take with her husband early Friday morning has been delayed until 3 p.m. ET at least.
Engadget
Faulty Windows cybersecurity update takes out banks, airlines and other major companies worldwide
A massive Microsoft Windows BSOD (blue screen of death) outage has impacted multiple companies worldwide including airlines, broadcasters and others.
Yahoo Finance
Inflation and the start of tech earnings: What to know this week
A key inflation reading and the start of Big Tech earnings headline the week ahead amid a slump in tech stocks.
Yahoo Life Shopping
The cult-favorite leggings with a 'fabulous tummy tuck' effect are down to $18 with Prime
Available in 25 solid colors and prints including black, navy and smoky green, all with tummy control.
Autoblog
Junkyard Gem: 1985 GMC Suburban K1500
A 1985 GMC Suburban half-ton 4x4 truck, found in a Nevada self-service wrecking yard.
Yahoo Life Shopping
The air fryer that's 'the future of cooking' is just $60 — nearly 40% off
Over 29,000 Amazon shoppers are sold on this hot appliance that make your favorite fried foods healthier.
Yahoo Life Shopping
The lip butter from this Julia Roberts-approved brand is my new favorite — it's just $7
The sunflower seed oil, chamomile and beeswax in this lip butter keep your lips soft and hydrated.
Autoblog
London pop-up spy room pays homage to 'Goldfinger' and Bond's Aston DB5
Aston Martin is paying homage to the 60th anniversary of "Goldfinger" and the brand's equally long association with James Bond.
Yahoo TV
How to watch the season finale of 'Love Island USA' tonight
It's time for our trip to Love Island to come to an end. Here's what you need to know about the season finale.
Yahoo Personal Finance
CD rates today, July 21, 2024 (up to 5.35% APY)
If you’re searching for today’s best CD rates, we’ve narrowed down some of the top offers. Learn more about CD rates today.
Yahoo Sports
In another grinding win, L.A.'s Kiké Hernández spoils Kenley Jansen's return to Dodger Stadium
This month has been a grind for the Dodgers, but they're off and running after the All-Star break, thanks to some late-game heroics. The latest heroes: Kiké Hernández and Will Smith.
Yahoo Sports
Dodgers to start Clayton Kershaw on Thursday, Tyler Glasnow on Wednesday, Dave Roberts says
Clayton Kershaw will start for the Dodgers on Thursday against the Giants after missing all of the season thus far while recovering from shoulder surgery.

News

Life

Entertainment

Finance

Sports

New on Yahoo

US cyber agency CISA says malicious hackers are 'taking advantage' of CrowdStrike outage

Recommended Stories

Outage caused by CrowdStrike’s disastrous update affected 8.5 million devices

CrowdStrike’s update fail causes global outages and travel chaos

Faulty CrowdStrike update causes major global IT outage, taking out banks, airlines and businesses globally

Microsoft says 8.5M Windows devices were affected by CrowdStrike outage

Microsoft outage: CrowdStrike security update impacts airports, hospitals, banks around the world

What we know about CrowdStrike's update fail that's causing global outages and travel chaos

See how the CrowdStrike security update outage impacted travel at airports around the world

From the Sphere to false cyberattack claims, misinformation runs rampant amid CrowdStrike outage

The CrowdStrike outage is a plot point in a rom-com

Faulty Windows cybersecurity update takes out banks, airlines and other major companies worldwide

Inflation and the start of tech earnings: What to know this week

The cult-favorite leggings with a 'fabulous tummy tuck' effect are down to $18 with Prime

Junkyard Gem: 1985 GMC Suburban K1500

The air fryer that's 'the future of cooking' is just $60 — nearly 40% off

The lip butter from this Julia Roberts-approved brand is my new favorite — it's just $7

London pop-up spy room pays homage to 'Goldfinger' and Bond's Aston DB5

How to watch the season finale of 'Love Island USA' tonight

CD rates today, July 21, 2024 (up to 5.35% APY)

In another grinding win, L.A.'s Kiké Hernández spoils Kenley Jansen's return to Dodger Stadium

Dodgers to start Clayton Kershaw on Thursday, Tyler Glasnow on Wednesday, Dave Roberts says