Solutions for problems says Tweakers Europe. Storm in a glass of water?
$CrowdStrike(CRWD.US$ The problems,
These appear to have been caused by a recent security software update. The blue screens of death seem to be caused in csagent.sys. Administrators can work around this by starting Windows in safe mode and deleting the C-00000291*.sys file in C:\Windows\System32\Drivers.
Problem and solution
The exact cause of the outage is not yet known, but security researcher Kevin Beaumont is believed to have obtained the .sys file in question. According to Beaumont, that driver has an incorrect file format, which is not properly validated.
CrowdStrike now has a solution for the problem, . There are no details about that either, but it is probably an improved driver. This is pushed to customers. The problem with endpoint software is that that update must then be sent to the end stations, such as desktops and laptops. And it is precisely those devices that are stuck in a bootloop. These must be started in safe mode, but in many cases this is a manual process. It is difficult to automate this on a large scale.![]()
![]()
These appear to have been caused by a recent security software update. The blue screens of death seem to be caused in csagent.sys. Administrators can work around this by starting Windows in safe mode and deleting the C-00000291*.sys file in C:\Windows\System32\Drivers.
Problem and solution
The exact cause of the outage is not yet known, but security researcher Kevin Beaumont is believed to have obtained the .sys file in question. According to Beaumont, that driver has an incorrect file format, which is not properly validated.
CrowdStrike now has a solution for the problem, . There are no details about that either, but it is probably an improved driver. This is pushed to customers. The problem with endpoint software is that that update must then be sent to the end stations, such as desktops and laptops. And it is precisely those devices that are stuck in a bootloop. These must be started in safe mode, but in many cases this is a manual process. It is difficult to automate this on a large scale.
BE AWARE It is difficult to say whether the reports or All disruptions are related to the problems at CrowdStrike. For example, there are currently many reports about , but according to a spokesperson this has nothing to do with CrowdStrike. ![]()
![]()
![]()
Disclaimer: Community is offered by Moomoo Technologies Inc. and is for educational purposes only.
Read more
Comment
Sign in to post a comment
meomopou : When is the right time to enter