How An Update Destroyed the Economy | The CrowdStrike Outage

The first 500 people to use my link will get a 1 month FREE trial of Skillshare!
skl.sh/nationsquid12231
Small corrections: Most antivirus programs have kernel access, but running (allegedly) untested code at this level is not common.
CrowdStrike Falcon Sensor is mostly business software, but can be used for those who work from home with company issued devices.

The Italian train line Vesuviana runs on windows 2000 and is the only train line not affected by the outage in the whole of Italy. The trashiest train line. Immune. LEGENDARY.

Y2K happened 24 years late

I work in IT and had to clean up after this mess. Was not fun.

A billion dollar company that just casually caused a $40,00,00,00 economic crisis on a regular Tuesday morning 💀

The worst thing to hear in any job is officially: "oops"

The entire hospital system in my state went down. My aunt who’s a higher up worked for 15 hours beginning at 2am to try to get the hospitals working without computers.

This global internet outage is insane! All airlines grounded and i was stock the airport and even banks, media, and offices from the U.S. to Australia. How can CrowdStrike have such a monopoly that could help restore such a massive amount of tech?

"Just uploaded my first update to crowdstrike!" "Got fired, nothings fair"

The number of people still blaming Windows and making comments like "I was fine on my home computer, I was lucky", and they don't use CrowdStrike, is just wild.

"If you had a Windows PC at home..." you wouldnt have CrowdStrike on your computer. 😂

If you look back at this guy you see he used to be a creepypasta and ARG type horror channel person, now he's become a tech vlog. Quite the transformation.

The corporate world outsources everything now to cut down their own labor costs. I lost my job when my department got outsourced to a third party company who does a worse job now.

Never underestimate the power of Hanlon's razor. People are scared of hackers and terrorist, but actually stupidity and people doing mistakes is way more dangerous...

Shall we call it Y2K24?

I had ZERO idea this was happening AT ALL. I heard nothing about it until the next day.

For clarity ... Crowdstrike Falcon is a commercial grade anti-virus program. It is not commonly available to or used by home or small business systems. Almost all of the BSODs were in commercially networked computers. Home users were not affected.

I was seriously considering flying abroad, but decided against it to save money, then the outage happened.
Being stingy saved my a*s from being stranded in another country lol

I'm in IT at a fairly large Hospital System in California, we had only 40 or so servers affected but over 11,000 end points that all needed touching to boot into, enter the BitLocker code, boot into Safe Mode, and delete the .sys file, we had 100's of analyst & Workstation Techs deployed, it took about 5 minutes per endpoint but we just about had it wrapped up by Tuesday. None the less it was a mess, but I can guarantee that all patients were admitted & treated just a LOT of overtime!

Many flights delayed,servers shut down the whole entire computer based business was at loss because of a faulty update

This also affected Wikipedia. I remember trying to do an edit and it wouldn't go through, and couldn't figure out why. And then I saw the news and realized.

the amount of mac users ive seen talk shit about windows because this didnt happen on mac while having absolutely zero idea what they are talking about was insane

Ah i see
I thought i had shut down something vital in my task manager

I heard about the outage after I got pissed because I thought I didn't get paid on payday, when in reality the bank was just having tech issues 💀

Technically if you had a Windows computer at home you wouldn't have seen that blue screen on July 19th since your computer wouldn't have ClownStrike installed. I've yet to meet a single individual who forks out the large sums of money required to use ClownStrike on their own personal device (most individuals aren't Fortune 500s).

idk just a little tale from the outage: my mom works in a coroners office and the worst one for her has been that their fingerprinting system is affected so they’ve had to manually ink fingerprints from the bodies they’ve received 💀

We got Y2K before GTA 6

I love how you sneak little Beatles references into every video, from the one where you had a file named "Carnival Of Light.MP3" to the Paul McCartney shirt you wore in this one!

Was stuck in an airport for over 15 hours then wasn’t able to get a hotel had to travel 30 miles from the airport to stay at a 2 star motel

The company I work for uses Crowdstrike. Only one person in our team got hit with the blue screen but because we work remotely, she now has to wait for them to send her a new laptop. If it had happened to all of us… yikes.

I work for a trucking company and everything was screwed up. Navigation was out, logs, load data, trailer status, even customers were screwed. We were having to use paper atlases and logs, and check every trailer for our loads. Scales were down too. What a dumpster fire.

Rember Y2K Bug?
This is him now:

It's ironic that a cyber security company that was supposed to protect you, was able to inflict this much damage that even the worst hacker groups could only dream of.

I was camping when this happened lol

making a PC not work is ONE way to keep data safe from anyone, but it is not what's supposed to happen

Forget Y2K34, we have Y2K24.

lol i was at the airport going to visit my grandma and shit was crazy

one of the first things I said when this happened was "I can't wait for NationSquid to make a video on this"

Our company doesn't use Crowdstrike, and I'm working for a Fortune 100. The moment they had advertisements all over F1, our company must have realized Crowd Strike is shit.

I love that my birthday is immortalized as "The modern y2k"

Err, *sort of*- all modern Antivirus/Anti-malware have drivers which run inside the kernel, and this is because they need to give its two cents about process creation- that's how, and indeed even why, they work in the first place.
What the end-user sees. is basically little more than user-space window-dressing, vastly simplifying for them what the AV/AM engine is actually doing, so the user is able to take action in the event their input is required.

Actually it affected mainly corporate PCs who use crowdstrike and not home users. It affected only a small percentage of Windows PC

As an IT professional, I’m SO glad we don’t use CrowdStrike. We’re a property management company so 90% of our computers are at remote sites with no in-house IT staff. We would’ve been so screwed. We even thought about going with CrowdStrike at one point.

I actually saw the effects of this while I was on vacation. I saw a screen that was supposed to show an ad on the back of a tram that goes down the boardwalk, but it instead showed the recovery screen, then saw the same exact thing later that day.

Man, all this outage did to me was cause a minor inconvenience at work cuz I didn't have access to a virtual machine to use certain programs. Meanwhile, other folks were probably dying cuz of hospitals being unable to use their equipment! It's kinda scary how vastly different the experience was for different people...

it was so funny my gasstaion was so old the system wasnt shut down at all hahaha so we were the only place in town really open

When I heard of the crash I immediately thought of your potential video on it lol, excited to hear you’re take on it!

Y2K's ping was so bad it took 24 years for it to connect

Our entire network has been offline (servers, routers, etc) for
Almost a week.

My cousin was stuck in Orlando for god knows how long, I felt so bad for her bc there’s nothing scarier than wanting to be home but you can’t because all your flights are grounded

i was camping at a music festival when this went down, so I had no idea until halfway through the day when a few artists had to cancel because they were stuck at various airports across the US

Manually updating computers with a drive/USB key one by one because it needs hands on fixed and unable to access the network/internet, this is called the "Sneaker Net" where the network is you and your "Sneakers" walking around plugging in over and over.

Good thing my laptop died earlier.
I'M UNTOUCHABLE
:(

This is what happens when you rely on "we can add/fix it with the later update" logic. The software today are all beta-versions forcibly deployed onto user's PC for testing. This needs to stop. The software must work properly without any need to be updated all the time, and no update should be forced on you.

The part that was really scary about this was 911 was down in all of Alaska, they had to give our individual phone numbers for people to call. Some hospitals/hospital systems were out. (2 hospital systems in my state were affected in some way by the issue). Of course Delta and other airlines were. I am a software engineer and I wish there was much more data redundancy than there is. Personally all of my computers (outside of my work computer) have a Linux boot system as a back up. I don’t do this for a paranoid reason necessarily but I do use it as a tool to teach others how to use Linux (friends have really old computers that run much faster on Linux than windows)

This one was right up your alley! Looking forward to watching

Aforementioned “IT professional” here, and yeah, it totally sucked ass. Had to go department by department in my company seeing who got affected and who didn’t. If they were affected, we had to boot into safe mode and delete the file, if it wouldn’t boot into safe mode we needed to use a recovery drive. If that didn’t work we had to replace the device outright. In short, again, it sucked ass.

Home computers were not affected by this. Crowd strike is a software that only ran on computers from businesses that paid for the software

When talking about market share you forgot that most of servers run Linux. Those servers are much more valuable target than average home PCs.

I think we can all agree that this felt like Y2K, everything reminded me of the anime movie Summer Wars.
Totally forgot this video came out cause I was celebrating my birthday, but I'll learn more about last Friday's events

CONDENSED VERSION: Almost every major company relies on a cybersecurity company called Crowdstrike to provide services to prevent data breaches. Windows machines with Crowdstrike received an software patch with from Crowdstrike however, it turns out one of the binaries that was meant to be loaded by the NT kernel was filled with zeroes which lead to a BSOD.

Crowdstrike has lost almost 50% of it's stock price since the outage

So basically: Kernel level software having a bug can have catastrophic consequences for your entire computer system.
And yet it is becoming standard practice for Video-Game Publishers who have a reputation for creating buggy, unstable and broken software to install Kernel Level Software onto your computer alongside your game (Often without your knowledge or consent) to monitor you and make sure you don't "cheat."

The reason why you dont update immediately, unless theres a very valid reason to do so

Is this the first present day video?! Neat

As a programmer, I can confirm you got the kernel definition right.
Also, yes AI won't be able to steal our jobs any day.

ooooh this was a fun day at work

i was so excited for a video about crowdstrike to come out on nationsquids channel! i just saw that im watching you from a year and i forgot to subscribe,im gonna subscribe now!

0:12 : Nope, I didn't experience it on my laptop.
Edit: When updating ,upgrading, and/or configure software, you can run it on sandbox to see what's wrong before deploying to the public.

Fortunately my PC survived

I didn't even know what CrowdStrike was and I am an IT technician. So, probably not in Germany I guess.

Nah-ah. Windows is one of the biggest problems not because it's popular, but because it doesn't gives 2-sh*ts to the user in general, specially security.
By the age of Windows 7, while Gates was still the CEO, Microsoft had a special section dedicated to have hundreds of machines and people working, each machine with a different set of "common" hardware, but each of them slightly different enough, so they could stress test Windows, and ANY updates in lots of different machines BEFORE releasing updates. That's why service Packs by the 2010`s were so secure, they would fix anything and never cause issues.
Now, this section doesn't exist anymore. You, as the user, test its updates, security too.
The idea would be that anyone who subscribes to Windows Insider would be testers, but truth is: They release updates earlier to normal people eventually that was not tested enough. This is NOT the first time that Microsoft causes people to lose data because of this. And it will not be the last. They force-push updates that breaks your computer nowadays because of it too.
I don't think Popularity is the issue alone, I think the practices of Microsoft since Windows 8 are the problem, and will continue to be until someone takes over and go back to the model from Windows 7. To make a system that is more interested in your security and usability rather than shoving AI that can snapshot your life and deliver to hackers in a silver plate or pushing telemetry forcedly, constantly on it's users or shoving bloatware on the system just like an Android device does.
Microsoft doesn't focus on stability for YEARS now. The fact that Windows 11 causes more issues on your hardware than Windows 10, and they still want to force you on a system that is 70% more unstable just because shows that. Apple doesn't fall for it, but the reason is price really, Windows is cheaper and easier for most people, having a mAc is very expensive and very elite in a lot of places actually, and Linux is awesome, but it's also not fool-proofed for the common people sadly. Even it's developers expect its users to know their way around the system and command prompts. So yeah, Microsoft knows they own the market, and the thing is: They also know they don't need to focus on stability anymore.
People nowadays are brain-dead for OS, and most of the new gens can barely use an office suite. Truth is: Windows users are royally fucked if they don't migrate to other platforms, and they will be royally fucked even if they use the system for just gaming, since most free to play games only runs on Windows for some reason =D

the fact this happened 1 day after my birthday is beyond me

So basically the kernel, is like Benadryl for the app that's spazzing out, you can't have a headache if you're asleep, and an app can't spaz out if it's closed by force.

I work at a bank and we were still dealing with the aftermath of the outage caused by the hurricane when this happened. It was a very bad day.

Fun fact: unlike many modern OSes nowadays, Windows 9x-based OSes (Windows 95, 98, and ME) had a monolithic kernel that didn’t separate programs into user and kernel space. This is also why an app crashing on a Windows 9x OS is more likely to bring down the entire system than in many modern OSes.
Also: Microsoft had wanted to restrict kernel access back in the 2000’s, but EU regulators stopped them from doing so due to fear of anti-competitive practices. Apple somehow was able to do pretty much the same thing more recently with their macOS operating system however, which was why the CrowdStrike bug didn’t affect macOS at all.
You are free to draw your own conclusions from this.

Should've known you'd make a video about this since you've covered Y2K

That's it, I'm protecting my computer with butterscotch ripple

I remember when this happened, thankfully my colleague and I were in early and work in IT so we got the whole thing escalated quickly and were up and running within the next hour or so, I still feel sorry for those who weren’t as fortunate.

What a shock, critical infrastructure being connected to the internet is a bad idea. Who would have thought?
I personally think CrowdStrike should get a penalty for what happened and legislation to ensure anything similar doesn't happen again by having options from multiple sources, along with thorough proofreading and testing of all code before it's sent out. If possible, testing it on their own systems first.

I work at a hospital that uses windows. Had no clue what was going on until I read my email. Guess we weren’t hit!

Dang I was 8 months old when Y2K happened in January 1st 2000 and now I’m a freaking 25 years old! Time really flies isn’t it?

Battle Network slowly turning into real life...

Wow, I didn't even know this was going on. Some of the places in town were messed up but they all attributed it to a cyberattack.
I now know they were using Crowdstrike Falcon because of this video

I work for a public utility with over 14000 employees. Since I am nothing more than a truck mechanic for the company, I am about as low on the totum pole as a person can get. Even after 38 years of working there, few know I even exist. Most of my IT equipment that I use for ordering parts and scheduling maintenance on the trucks is so outdated, hell I still have a fax machine in my office. I kind of like this low key job. They can't lay me off if they don't know me.
Guess whose computer was NOT affected by this global outage? When I came to work that morning it was business as usual for me😂

it’s almost like one company shouldn’t be running security for multiple extremely important services

I operate rollercoasters and I believe the CrowdStrike outage caused a few of our park’s rides to go down. Was kinda crazy

At my company we the end users had to clean it up with the direction of IT was crazy that half our store was down

Super fantastic vid! Scary how severe this was

You ever notice how huge companies don't use macos or Linux?
It's almost like the windows environment is harder to get into.
This was a test

Misinformation! Most computer at home are not affected. Only computers has CrowdStrike installed on the computer.
Computer without CrowdStrike are not affected. Most CrowdStrike customers are corporation. Because this software is very expensive, most home users don’t have that.

I woke up at 1 P.M. to my mom getting me up and telling me about the outage. As a dude who loves video games, Building pc's and just a all around tech nerd. I was bummed that I missed it. It was cool to read about and see footage tho

Apparently the current CEO of Crowdstrike was CEO of McAfee when something similar was happening on Windows XP machines using McAfee

👹 Me who disabled windows updates and was unaffected by whatever the hell happened

"i want computers to look like cars on the road"
Well... you're getting your wish but backwards because the auto industry is currently killing the diversity of their car models and pushing everything towards being an SUV. Small cars and minivans are being discontinued left right and center

imagine going to the hospital saying they cant operate on you, and your like, my linux or USB (so can delete the file) is all the way at home i diddent know had to bring that!

Let's not blame the victim here, Crowdstroke and their shoddy practices were 110% at fault and it was pure laziness and neglect that screwed so much up.

If only people stuck to Windows Defender. But no. That is what you get when you use 3rd party crap.

As a person who doesn’t touch grass, I never noticed.

Surely this should be the death of Windows. No other OS has to constantly fight a battle against malware, risking the safety of the OS by doing so.