Is Crowdstrike outage an AI Failure?

Posted on July 19, 2024 by Vijayashankar Na

The failure of Crowd strike security software causing global chaos will be analysed by experts in Due Course.

In the immediate, it appears that there could be a failure in the Artificial intelligence based automated response which has generated a false alarm.

The appearance seems to be related to update issue. But probably it is a false report. Or the fault has been triggered in the updated version recognizing the update itself as an act of Cyber threat.

This should be a wakeup call for all those who think AI makes things more reliable. It was amusing to know that many airports are shifting to manual mode to tide over the crisis.

Workaround

One of the suggested work around is:

  1. Boot Windows into Safe Mode or the Windows Recovery Environment.
  2. Navigate to the C:\Windows\System32\drivers\CrowdStrike directory.
  3. Locate the file matching C-00000291*.sys and delete it.
  4. Boot the host normally.

Terrorists have been found to use a second bomb blast after some time in the same location to smoke out victims from the first blast and kill them with the second.

A similar risk could be there in this case. It is said that the workaround will disable some security features. Attackers may be planning to hit in this time window.

Organisations should be careful.

Naavi

About Vijayashankar Na

Naavi is a veteran Cyber Law specialist in India and is presently working from Bangalore as an Information Assurance Consultant. Pioneered concepts such as ITA 2008 compliance, Naavi is also the founder of Cyber Law College, a virtual Cyber Law Education institution. He now has been focusing on the projects such as Secure Digital India and Cyber Insurance
This entry was posted in Cyber Law. Bookmark the permalink.