20.07.2024. / 16:00
LONDON – Internet security experts point out that everything indicates that the routine update of the protection program “Falcon Sensor” of the American company “Crowdstrike”, which caused a halt in the operation of computer systems around the world, did not pass adequate quality checks before being put into operation.
PHOTO: Pixabay
The last version of the program update was supposed to additionally ensure the system operation of “Krowdstrike” clients from hacker intrusions, but the wrong code in the files resulted in one of the biggest downtimes in the work of computers of companies that use the operating system of the technological giant “Microsoft”.
As a result of this problem, the work of banks, airlines, hospitals and government offices around the world has been disrupted.
“Crowdstrike” has published information about the repair of the compromised systems, but experts believe that it will take some time to normalize operations, since the disputed code must be manually removed.
The problems appeared immediately after the controversial update was implemented and users posted photos on social media of computers with “blue screens of death” written on them as a malfunction.
Petrik Wardle, one of the security researchers whose specialty is threats against operating systems, pointed out that the analysis determined the code responsible for the interruption.
“The problem with the update was in the configuration information or signature file. Similar signatures are code that finds certain types of malicious code or malware. It’s common for security products to update their signatures once a day because they’re constantly monitoring new threats and want to make sure their users are protected from the latest threats.”Wardl emphasized.
According to him, the frequency of updates is the most likely reason why “Kraudstrike” did not perform additional checks.
It is not known how the faulty code got into the update and why it was not detected before it was released to users.
Srna
Source: www.capital.ba
