Global Microsoft Counterstrike Outage

[Sloboogie]

 

[DC_Dude]

 

[Simply Sickenin']

I just finished a 12 shift at a hospital and let me tell you how much LAST NIGHT SUCKED!!!!

Microsoft come fix ya shit!!!!
I ain't got time for endless/pointless paperwork.

 

[Sloboogie]

I work overnight as an analyst and got locked out of my workstation and was able to recover with the bitlocker key. My personal device has ALL access to everything blocked via Firewall, and asks me permission 1st, so the personal PC is still up and running, The non-savvy have not been so lucky.

 

[oskie]

At work now. Intranet working but no web based applications online. The one day I come into the office and can't do anything but scroll bgol on my phone

 

[Chiyo]

Microsoft employee here. Its almost all crowdstrike's fault.

Also we are showing things as mitigated.

 

[Coldchi]

Seems like a patch from Crowdstrike created this problem.
They said that they have applied the fix, but it takes time to spread to all affected systems.

Neither company i work for uses Crowdstrike, we use Tanium.....so we didn't receive any of those patch updates.

 

[D24OHA]

Ok,

So Crowdstrike is a cybersecurity company that issues updates to Microsoft systems.....

There is an issue with the latest update that they issued..... if crowdstrike worked with Apple products then the headlines would read "Global outtage related to Apple systems" ........

Loading…

edition.cnn.com

 

[Coldchi]

Ok,

So Crowdstrike is a cybersecurity company that issues updates to Microsoft systems.....

There is an issue with the latest update that they issued..... if crowdstrike worked with Apple products then the headlines would read "Global outtage related to Apple systems" ........

Loading…

edition.cnn.com

this is what happens when they rollout updates without thoroughly testing it on test systems first.
taking shortcuts fucks shit up.

 

[DC_Dude]

Yeah the CEO is going to be on CNBC in a few minutes

 

[Database Error]

PC covid19

 

[4 Dimensional]

Well this just exposed a MAJOR security flaw in Windows.

Meanwhile, Linux users

 

[HellBoy]

Big time screw up.

The file that caused the BSOD is csagent.sys. Several of my friends use Crowdstrike at their jobs.

 

[DC_Dude]

One good thing about BGOL, we have in house tech experts that can explain what the hell is going on when shit hits the fan lol

 

[EPDC]

I'm logged in at work and have a meeting at 930 and another at 10. Smh my laptop didn't get the blue screen. Welp.

 

[fu2]

One good thing about BGOL, we have in house tech experts that can explain what the hell is going on when shit hits the fan lol

+

 

[DC_Dude]

Yeah I’m able to log into my laptop but it’s a lot of people at my job not able to log into some our systems at work. Very weird

 

[DC_Dude]

Looking like some folks will have to do some manual steps vs an automative fix

 

[TruDat]

Well this just exposed a MAJOR security flaw in Windows.

Meanwhile, Linux users

I was gonna post this
we use Linux terminals
so far no problem

 

[Coldchi]

One good thing about BGOL, we have in house tech experts that can explain what the hell is going on when shit hits the fan lol

the closest thing we've experienced on BGOL was database errors during Dallas Cowboys games......lol

 

[CPT Callamity]

I woke up and my laptop was lunchin. I thought it was just a glitch since we were testing patches. Now it's global. I can still work a bit but some of the things I do is hampered for now. It didn't effect home computers, mostly business and government. Only reason this makes me shake my head is because my security department is always bugging me to deploy that software on machines.

 

[Bumpee]

Of course Our shit here would be working when everyone else's is out.....smh

 

[CPT Callamity]

I'm logged in at work and have a meeting at 930 and another at 10. Smh my laptop didn't get the blue screen. Welp.

If you all didn't have Crowdstrike, you're good.

 

[Database Error]

Of course Our shit here would be working when everyone else's is out.....smh

 

[Coldchi]

Crowdstrike stock took a big hit this morning in PM.....

 

[TENT]

Blah blah blah.
I bit some remote employee is on a "quiet vacation" and didn't hit enter.

 

[4 Dimensional]

This issue is going to cause a lot of changes. The world is too dependent on Microsoft.

 

[Stix-N-Stonz]

Days like this I'm glad I don't do tech support anymore. Only impact this outage has had on me was I had to go back home to get cash for my cigarettes because the store couldn't take cards.

 

[yaBoi]

This is bad...like real bad

 

[yaBoi]

This issue is going to cause a lot of changes. The world is too dependent on Microsoft.

No it ain't..Microsoft ain't going no where.
Hell it ain't even Microsoft fault

Now crowdstrike on the other hand...

 

[CPT Callamity]

Crowdstrike stock took a big hit this morning in PM.....

If they can manage to recover there is money to be made. I'd be cautious.

 

[yaBoi]

this is what happens when they rollout updates without thoroughly testing it on test systems first.
taking shortcuts fucks shit up.

heads are rolling as we speak.....

 

[dwayne1376]

Seems like its all cloud based. Knew this would happen once companies removed their onsite data stacks to the cloud. Doesnt matter how diverse your connectivity is if the cloud carriers operating systems go down.

 

[yaBoi]

Seems like its all cloud based. Knew this would happen once companies removed their onsite data stacks to the cloud. Doesnt matter how diverse your connectivity is if the cloud carriers operating systems go down.

the biggest problem is that it blue screened every client PC

most of the time them shit's ain't backed up

i just talked to people that works at fedex and they are siting on a blue screen and the computer will not recover

 

[CPT Callamity]

There is a way to recover (allegedly):

1. Boot Windows into Safe Mode or WRE.

2. Go to C:\Windows\System32\drivers\CrowdStrike

3. Locate and delete file matching "C-00000291*.sys"

4. Boot normally.

Problem is, if you have domain connected devices, elevated accounts and the like are not going to work until you patch your domain controllers and anything CS touched.
Also, you may need your bitlocker recovery key so you can enter the Safe Mode menu (F8).