How to Fix the Global IT Outage Caused by CrowdStrike Falcon Update
Overview:
A faulty software update from the cybersecurity firm CrowdStrike caused a major global IT outage, affecting Windows computers worldwide. This disruption impacted businesses, airports, train stations, banks, broadcasters, and the healthcare sector. Although there were initial concerns of a cyberattack, CrowdStrike confirmed that the outage was due to a "defect" in a software update for its flagship security product, Falcon Sensor. Windows computers with Falcon installed crashed without fully loading, resulting in widespread disruptions.
Temporary Solution:
To resolve this issue, follow these steps:
Boot into Safe Mode or Windows Recovery Environment:
- Restart your Windows computer and choose Safe Mode or Windows Recovery Environment during startup.
Navigate to the CrowdStrike Directory:
- Open File Explorer and go to
C:\Windows\System32\drivers\CrowdStrike.
Locate and Delete the Problematic File:
- Look for a file with the pattern “C-00000291*.sys.”
- Delete this file.
Boot Normally:
- Restart your computer normally. Note that CrowdStrike has already deployed a fix, but some systems may take time to recover fully.