How to fix the CrowdStrike Falcon Issue Crashing Windows PCs
How to fix the CrowdStrike Falcon Issue Crashing Windows PCs
As of today 19/07/2024 there has been a global outage of Windows 10 and 11 PCs using CrowdStrikes Falcon sensor causing disruption around the globe.
This is not a cyber attack.
Mac and Linux users are not affected.
Symptoms:
On boot up you will see the old blue screen of death.
CrowdStrike Falcon:
This is just a faulty register in the latest update of the Falcon Sensor that is an agent that CrowdStrike claims “blocks attacks on your systems while capturing and recording activity as it happens to detect threats fast.”.
To fix the issue:
1. Boot Windows into Safe Mode or WRE.
2. Go to C:\Windows\System32\drivers\CrowdStrike
3. Locate and delete file matching “C-00000291*.sys”
4. Boot normally.
If the safe mod is disabled then this will not work.
CrowdStrike have commented:
CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts. Mac and Linux hosts are not impacted. This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed. We refer customers to the support portal for the latest updates and will continue to provide complete and continuous updates on our website. We further recommend organizations ensure they’re communicating with CrowdStrike representatives through official channels. Our team is fully mobilized to ensure the security and stability of CrowdStrike customers.
Here is a list of affected services by country:
– Australia: Media, airlines, supermarkets, banks, and hospitals impacted.
– Belgium: Train ticket sales, digital announcements, media, banks, airports, and government services disrupted.
– Canada: TD Canada Trust app and Vancouver International Airport affected.
– China: Widespread blue screens, some businesses allowed early dismissal.
– Croatia: Health information system and air traffic control issues.
– Czech Republic: Prague Airport affected.
– France: TV channels and Paris Olympics systems disrupted.
– Germany: Berlin Airport halted flights, Lufthansa affected, hospital operations cancelled.
– Hungary: Budapest Airport issues.
– Hong Kong: Airport check-in delays, airline booking systems down.
– India: Major airlines and IT firms impacted.
– Israel: Emergency services, hospitals, and banks affected.
– Japan: Spring Japan airline experiencing issues.
– Malaysia: KTMB railway ticketing system issues.
– Netherlands: Schiphol airport, banks, and medical services disrupted.
– New Zealand: Banks, supermarkets, Auckland Transport, and Christchurch Airport were affected.
– Philippines: Major banks, telecommunications, airlines, and government websites down.
– South Africa: Banking issues.
– South Korea: Jeju Air is experiencing issues.
– Singapore: Changi Airport delays, various service disruptions.
– Spain: National airport traffic control IT outage.
– Switzerland: Zurich Airport halted landings.
– United Kingdom: News channels, airports, rail companies, NHS, and various services disrupted.
– United States: Airline ground stops, 911 service disruptions, Microsoft and CrowdStrike shares dropped.
UK Cyber Security Group Ltd is here to help
Please check out our Cyber Essentials Checklist
Please check out our Free Cyber Insurance
If you would like to know more, do get in touch as we are happy to answer any questions. Looking to improve your cybersecurity but not sure where to start? Begin by getting certified in Cyber Essentials, the UK government’s scheme that covers all the technical controls that will provide the protection that you need to help guard against criminal attacks. Or just get in touch by clicking contact us