CrowdStrike-Microsoft outage: Australia warns of ‘malicious websites’ offering recovery

Australia’s cyber intelligence agency urges consumers to source their technical information from official CrowdStrike sources only

Reading Time:3 minutes

The San Ysidro Port of Entry border crossing in Tijuana, Mexico, on July 19. A botched software update from cybersecurity firm CrowdStrike crashed countless Microsoft Windows computer systems globally and impacted the CBP One app used by people crossing the US-Mexico border. Photo: Bloomberg

Published: 10:09am, 20 Jul 2024Updated: 1:38pm, 20 Jul 2024

Australia’s cyber intelligence agency said on Saturday that “malicious websites and unofficial code” were being released online claiming to aid recovery from Friday’s global digital outage, which hit media, retailers, banks and airlines.

Australia was one of many countries affected by the outage that caused havoc worldwide after a botched software update from CrowdStrike.

The Australian Signals Directorate (ASD) – the country’s cyber intelligence agency – said “a number of malicious websites and unofficial code are being released claiming to help entities recover from the widespread outages caused by the CrowdStrike technical incident”.

On its website, the agency said its cybersecurity centre “strongly encourages all consumers to source their technical information and updates from official CrowdStrike sources only”.

Security experts said CrowdStrike’s routine update of its widely used cybersecurity software apparently did not undergo adequate quality checks before it was deployed.

The latest version of its Falcon Sensor software was meant to make CrowdStrike clients’ systems more secure against hacking by updating the threats it defends against. But a faulty code in the update files resulted in one of the most widespread tech outages in recent years for companies using Microsoft’s Windows operating system.