Microsoft blames EU rules for allowing world’s biggest IT outage to happen European Commission deal prevented software giant from making security changes that would have blocked CrowdStrike update, claims tech giant By James Titcomb<https://www.telegraph.co.uk/authors/j/ja-je/james-titcomb/> 22 July 2024 https://www.telegraph.co.uk/business/2024/07/22/microsoft-blames-eu-rules-worlds-biggest-tech-outage/
Microsoft<https://www.telegraph.co.uk/news/2024/07/20/displaced-airport-passengers-dover-global-it-meltdown/> has blamed EU rules for enabling a faulty security update to cause the world’s biggest IT outage<https://www.telegraph.co.uk/news/2024/07/20/national-lottery-website-app-down-day-after-global-outage/>. The software giant said a 2009 agreement with the European Commission meant it was unable to make security changes that would have blocked the CrowdStrike update<https://www.telegraph.co.uk/business/2024/07/19/what-is-crowdstrike-80bn-it-giant-behind-global-meltdown/> that triggered widespread travel<https://www.telegraph.co.uk/news/2024/07/19/train-companies-widespread-disruption-global-tech-outage/> and healthcare chaos on Friday. CrowdStrike’s Falcon system, designed to prevent cyber attacks, has privileged access to a key part of a computer known as the kernel. This meant that a faulty update<https://www.telegraph.co.uk/money/consumer-affairs/wages-might-not-paid-on-time-internet-systems-down/> last week resulted in millions of Windows computers and servers being unable to load at all, leading to flight cancellations, contactless payments not working and GP surgeries being unable to make appointments<https://www.telegraph.co.uk/news/2024/07/21/gps-warn-of-delays-next-week-after-global-it-outage/>. Microsoft, which offers its own alternative to CrowdStrike known as Windows Defender, agreed in 2009 to allow multiple security providers to install software at the kernel level amid a European competition investigation. In contrast, Apple blocked access to the kernel on its Mac computers in 2020, which it said would improve security and reliability. A Microsoft spokesman told the Wall Street Journal that it was unable to make a similar change because of the EU agreement. Microsoft said on Saturday that the CrowdStrike update had affected 8.5m Windows devices<https://www.telegraph.co.uk/business/2024/07/19/checkouts-trains-airports-affected-global-it-shutdown/>. This was less than 1pc of all machines operating the software, but had major impacts because CrowdStrike is widely used in businesses. The faulty update caused a blue error screen on many computer screens, rendering them unusable until they were fixed. CrowdStrike said on Monday that “a significant number” of the affected computers were back online and apologised for the disruption. Figures from data company OAG showed that 9,650 flights had been cancelled between Friday and Sunday. While many airlines had recovered, 2,619 flights were cancelled on Sunday, with US airline Delta accounting for most of those. The NHS said that its systems were back online but that “there still may be some delays as services recover”. The European Commission pursued Microsoft in the early 2000s over concerns that the company’s popular Windows software gave it an unfair advantage in other areas such as web browsers. In 2009 the company agreed to boost choice for computer users in browsers and other software. -- Please Note: The sender and email bear no relation to ANU or scam issues _______________________________________________ Link mailing list [email protected] https://mailman.anu.edu.au/mailman/listinfo/link
