CrowdStrike outage leads Microsoft plan security capabilities outside of kernel
Microsoft aims to improve security outside the Windows kernel after a CrowdStrike update outage affecting 8.5 million devices, emphasizing collaboration, Safe Deployment Practices, and robust incident response plans.
Read original article
In response to a significant outage caused by a CrowdStrike software update that affected approximately 8.5 million Windows devices, Microsoft is planning to enhance security capabilities that operate outside of the Windows kernel. The outage, which resulted in a blue screen of death (BSOD) for many organizations, prompted Microsoft to convene a Windows Endpoint Security Ecosystem Summit. Attendees, including various endpoint security vendors and government officials, discussed strategies to improve resilience in the endpoint security ecosystem and prevent similar incidents in the future. A key focus was on enabling security solutions to function outside of kernel mode, which could mitigate the risk of widespread failures due to faulty updates. Microsoft has indicated a shift towards reducing reliance on kernel access, although concerns have been raised about potential anticompetitive advantages if kernel access is restricted for other vendors. The summit also emphasized the importance of collaboration among security vendors and the implementation of Safe Deployment Practices to enhance incident response and software testing. Microsoft provided recommendations for organizations to prepare for major incidents, including robust business continuity and incident response plans.
- Microsoft plans to enhance security capabilities outside of the Windows kernel following a CrowdStrike outage.
- The outage affected 8.5 million devices, prompting discussions on improving endpoint security resilience.
- Concerns exist regarding potential anticompetitive advantages if Microsoft restricts kernel access for other vendors.
- Collaboration among security vendors and Safe Deployment Practices were emphasized at the summit.
- Organizations are advised to have robust business continuity and incident response plans in place.
Related
Microsoft: Helping our customers through the CrowdStrike outage
CrowdStrike released a global software update causing IT disruptions. Microsoft collaborated to aid affected users, deploying engineers and sharing remediation instructions. Industry collaboration is crucial for resolving rare incidents effectively.
Microsoft calls for Windows changes and resilience after CrowdStrike outage
Microsoft is reconsidering security vendor access to the Windows kernel after a CrowdStrike update outage affected 8.5 million PCs, emphasizing the need for improved resilience and collaboration in security practices.
Microsoft says CrowdStrike outage affected many more devices than reported
Microsoft disclosed that the CrowdStrike outage affected significantly more than 8.5 million Windows devices, leading to system failures. They are reassessing kernel driver necessity and improving update practices to prevent future incidents.
How CrowdStrike Stopped Everything
On July 19, 2024, a CrowdStrike software update caused a global IT outage affecting 8.5 million Windows devices, disrupting essential services and highlighting vulnerabilities in modern interconnected systems.
Taking steps that drive resiliency and security for Windows customers
Microsoft's Windows Endpoint Security Ecosystem Summit focused on enhancing Windows security through collaboration among vendors, discussing Safe Deployment Practices, long-term enhancements, and practical steps for enterprises to improve security.
0 commentsRelated
Microsoft: Helping our customers through the CrowdStrike outage
CrowdStrike released a global software update causing IT disruptions. Microsoft collaborated to aid affected users, deploying engineers and sharing remediation instructions. Industry collaboration is crucial for resolving rare incidents effectively.
Microsoft calls for Windows changes and resilience after CrowdStrike outage
Microsoft is reconsidering security vendor access to the Windows kernel after a CrowdStrike update outage affected 8.5 million PCs, emphasizing the need for improved resilience and collaboration in security practices.
Microsoft says CrowdStrike outage affected many more devices than reported
Microsoft disclosed that the CrowdStrike outage affected significantly more than 8.5 million Windows devices, leading to system failures. They are reassessing kernel driver necessity and improving update practices to prevent future incidents.
How CrowdStrike Stopped Everything
On July 19, 2024, a CrowdStrike software update caused a global IT outage affecting 8.5 million Windows devices, disrupting essential services and highlighting vulnerabilities in modern interconnected systems.
Taking steps that drive resiliency and security for Windows customers
Microsoft's Windows Endpoint Security Ecosystem Summit focused on enhancing Windows security through collaboration among vendors, discussing Safe Deployment Practices, long-term enhancements, and practical steps for enterprises to improve security.