Incident Summary
On July 19, 2024, CrowdStrike Falcon Sensor update caused widespread Blue Screen of Death (BSOD) incidents on Windows machines. Affected systems experience crashes and fail to reboot normally. CrowdStrike engineers are actively working on a fix.
Impact
- Organisations worldwide are reporting critical service disruptions.
- Key industries, including healthcare and emergency services, are notably affected.
Workaround Steps
To mitigate the issue, follow these steps:
- Boot into Safe Mode or Windows Recovery Environment (WRE)
- Restart your computer and press
F8or the appropriate key to enter Safe Mode/WRE.
- Restart your computer and press
- Navigate to the CrowdStrike Directory
- Go to
C:\Windows\System32\drivers\CrowdStrike.
- Go to
- Delete the Faulty File
- Locate the file matching “C-00000291*.sys” and delete it.
- Reboot Normally
- Restart your computer as usual.
Reccomendations
- Implement the workaround to restore system functionality temporarily.
- Stay updated with CrowdStrike advisories for a permanent solution.
If you have any questions or concerns regarding this incident or for any further advise or guidance please contact your MTI account manager or our 24×7 Security Operations Centre via 01483 520349 or servicedesk@mti.com