CrowdStrike’s Cyber Outage Will Cost $Billions

The CrowdStrike defective software update that crashed computers, cancelled flights and disrupted hospitals around the world and the outage may have cost Fortune 500 companies as much as $5.4 billion in revenues.

The largest direct financial losses will likely be suffered by Fortune 500 companies in the healthcare and banking sectors.

With litigation and numerous lawsuits waiting in the wings, Crowdstrike is probably looking at billions more in fines, legal fees and lost revenue. 

CrowdStrike will probably be fined by US Government Regulators. Worse, as the CrowdStrike’s outage could have involved breaches and issues related to personal data, it could come under investigationby European regulators, which can impose fines of up to 4% of annual revenues.

In the US, CrowdStrike is also likely to see an avalanche of class action lawsuits. US law firms, including San Francisco-based Lieff Cabraser Heimann & Bernstein, are already reviewing and collecting data from clients related to business losses that “will help us hold Crowdstrike accountable for its disruption of global business and the consequences thereof for all Internet users.”

Further, CrowdStrike could see customers leave for competing firms and the outage has already cost the company and its investors $billions, including the damages to its stock market value, which it will likely not recover from any time soon.  

The primary cause of the failure stemmed from an update that CrowdStrike pushed to its flagship Falcon platform, which functions as a cloud-based service intended to protect businesses from cyber-attacks and disruptions. The update contained a bug which caused 8.5m Windows machines to crash en masse.

CrowdStrike is one of the world’s most important cyber security companies, and was valued at around $83bn before the outage. It services about 538 of the Fortune 1000 companies, according to its website, and operates around the world. 

The incident has taken a significant bite out of CrowdStrike’s stock price and CrowdStrike’s shares fell to $294 per share, and are presently trading at around $264. That’s a decline of more than 20%, and its market capitalisation could fall even further.

The consequences of its botched software update are proving severe, demonstrating just how many companies are reliant on a single supplier for the same services to keep operations running.

CrowdStrike have now said that it has laid out plans to ensure a similar issue can be prevented, including additional validation checks and improved testing by using testing types such as local developer testing and content update and rollback testing.

Fast Company   |     Lieff Cabraser   |   Reddit   |     Guardian   |     CNN   |    Silicon Republic   |   NYPost  

Imge:

You Might Also Read: 

Companies Must Review Their Cloud Strategies:


If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

 


Cyber Security Intelligence: Captured Organised & Accessible


 

« Wiz Rejects Google's $23b Acquisition Offer
Most Wanted - North Korean Hackers  »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Truth Technologies Inc (TTI)

Truth Technologies Inc (TTI)

TTI is a premier provider of worldwide anti-money laundering, anti-fraud, customer identification, and compliance products and services.

IdenTrust

IdenTrust

IdenTrust enables organizations to effectively manage the risks associated with identity authentication.

SecureMetric Technology

SecureMetric Technology

SecureMetric is one of SE Asia’s leading players in the field of digital security with a focus on Software Licensing Protection, 2-Factor Authentication, Advanced Identity and Access Management, Publi

Intersec Worldwide

Intersec Worldwide

Intersec Worldwide is a boutique Information Security Firm specializing in PCI Compliance, Assessment, Remediation, Forensics, Data Breach Investigations, Incident Response and IT Managed Services.

Sqreen

Sqreen

Sqreen is a web application security monitoring and protection solution helping companies protect their apps and users from attacks.

GCHQ Apprenticeships

GCHQ Apprenticeships

GCHQ, the UK intelligence and security organisation, offers a unique three-year Cyber Security Degree Apprenticeship with employment on successful completion.

SyferLock Technology Corp.

SyferLock Technology Corp.

SyferLock is an innovative provider of next-generation authentication and security solutions.

StrikeReady

StrikeReady

StrikeReady have developed CARA, an advanced technology solution that offers personalized and proactive assessment and remediation of future and current risk in real-time.

AML Global Solutions (AMLGS)

AML Global Solutions (AMLGS)

AMLGS delivers Financial Crime prevention training programmes and consultancy services encompassing Anti-Money Laundering (AML), Counter Terrorism Financing (CTF), Bribery & Corruption and Fraud.

SecurIT360

SecurIT360

SecurIT360 is a full-service specialized Cyber Security and Compliance consulting firm.

Material Security

Material Security

Material is solving one of the most fundamental problems in security: protecting the data sitting in mailboxes.

rSolutions

rSolutions

rSolutions delivers managed cybersecurity services to clients in many industry sectors including financial services, telecommunications, energy, government and retail.

Moore ClearComm

Moore ClearComm

Moore ClearComm is part of Moore Kingston Smith a leading UK firm of accountants and business advisers. Our services include Data Privacy, Cyber Security, Business Continuity and Information Security.

iTRUSTXForce

iTRUSTXForce

iTRUSTXForce is a global provider of DigitalX (cybersecurity, privacy, and digital trust) services. We offer comprehensive services that focus on delivering outcomes for our clients.

AppSOC

AppSOC

AppSOC is a leader in Application Security Posture Management (ASPM) and Code-to-Cloud Vulnerability Management.

Tanzania Industrial Research and Development Organization (TIRDO)

Tanzania Industrial Research and Development Organization (TIRDO)

TIRDO is a multi-disciplinary research and development organization.