- Defend & Conquer Weekly Cybersecurity Newsletter
- Posts
- September Summit After CrowdStrike Update
Welcome reader to your CybersecurityHQ report
Microsoft to Host September Summit Following CrowdStrike Update Mishap
Microsoft has announced a September summit for cybersecurity firms following a significant incident in July. A faulty CrowdStrike software update caused millions of Windows computers to crash. The update, which aimed to gather data on new attacks, inadvertently caused widespread system failures, leading to significant disruptions across various sectors.
The incident had far-reaching effects, causing airlines like Delta Air Lines to cancel thousands of flights, logistics companies to delay package deliveries, and hospitals to postpone medical appointments. Delta Air Lines reported a $550 million loss due to the outage and is now seeking damages from CrowdStrike and Microsoft.
In response, Microsoft will host the Windows Endpoint Security Ecosystem Summit on September 10 at its Redmond, Washington campus. The event will bring together CrowdStrike, other endpoint protection vendors like Check Point and SentinelOne, and various industry stakeholders to discuss measures to prevent similar issues in the future.
A key focus of the summit will be exploring using Windows' user mode more extensively instead of the privileged kernel mode, which many endpoint protection applications currently rely on. Kernel mode offers deep access to the operating system, enabling security software to monitor and stop malicious activities effectively. However, this level of access also makes systems more vulnerable to catastrophic crashes, as demonstrated by the recent CrowdStrike incident.
The summit will also explore other advanced technologies, including adopting eBPF (Extended Berkeley Packet Filter) technology and memory-safe programming languages like Rust. Microsoft has been a strong proponent of Rust, donating $1 million to the Rust Foundation last year to support its development.
Microsoft, a competitor of CrowdStrike through its Defender for Endpoint product, has underscored that all participating companies will be treated equally at the summit. The discussions at this pivotal event are expected to significantly influence the future of endpoint security, and further updates will be provided after the event.
Stay Safe, Stay Secure.
The CybersecurityHQ Team
Reply