{"id":1912,"date":"2026-02-07T02:52:22","date_gmt":"2026-02-07T07:52:22","guid":{"rendered":"https:\/\/wyattsanders.com\/?p=1912"},"modified":"2026-02-07T02:52:23","modified_gmt":"2026-02-07T07:52:23","slug":"crowdstrike-outage-2024-billions-lost","status":"publish","type":"post","link":"https:\/\/wyattsanders.com\/es\/crowdstrike-outage-2024-billions-lost\/","title":{"rendered":"CrowdStrike Outage: The $10 Billion Mistake That Crashed the World"},"content":{"rendered":"

\ud83d\udca5 CrowdStrike Outage: The $10 Billion Mistake That Crashed the World<\/h2>\n

\ud83d\udd0d What Really Happened in the July 2024 CrowdStrike Falcon Update Failure<\/strong><\/p>\n

On July 19, 2024, millions of Windows computers around the world suddenly displayed the dreaded Blue Screen of Death (BSOD) \ud83d\udc99\ud83d\udc80<\/a>. Airports shut down \u2708\ufe0f\u274c, hospitals couldn’t access patient records \ud83c\udfe5\ud83d\udccb, banks froze transactions \ud83c\udfe6\ud83d\udeab, and emergency services went offline \ud83d\udea8\ud83d\udcde. The culprit? A single faulty update from CrowdStrike<\/strong>, a cybersecurity company most people had never heard of before \ud83d\ude31<\/p>\n

In this post, we’ll break down what happened, why it happened, and what it means for the future of cybersecurity and enterprise software \ud83d\udee1\ufe0f\ud83d\udd2e.<\/p>\n

\u26a0\ufe0f What Is CrowdStrike?<\/h3>\n

CrowdStrike<\/strong> is a cybersecurity company founded in 2011 that provides endpoint protection for millions of computers worldwide \ud83c\udf10. Their flagship product, Falcon \ud83e\udd85<\/strong>, runs at the kernel level (the deepest part of the operating system) on Windows machines to detect and prevent malware and cyber attacks \ud83e\udda0\ud83d\udeab.<\/p>\n

Because Falcon operates at such a low level in the system, it has extraordinary privileges \ud83d\udd11. This makes it incredibly powerful for stopping sophisticated threats, but also incredibly dangerous if something goes wrong \ud83d\udca3. For a deeper dive into system-level software, check out my post on working with NVIDIA Jetson development kits \ud83d\udda5\ufe0f<\/a>.<\/p>\n

\ud83d\udca5 What Went Wrong?<\/h3>\n

On July 19, 2024, CrowdStrike pushed a “channel file” update to millions of Windows systems \ud83d\udd04. This routine update was meant to improve threat detection \ud83c\udfaf. Instead, it contained a bug \ud83d\udc1b that caused Windows systems to crash immediately upon receiving it \ud83d\udcbb\ud83d\udca5.<\/p>\n

The technical cause? A NULL pointer dereference<\/strong> in C++ code \ud83d\udd27. In simple terms, the update tried to access memory that didn’t exist \ud83e\udde0\u274c, causing the entire operating system to panic and crash \ud83d\udea8. Because Falcon runs at the kernel level, this crash brought down the entire system – not just the security software.<\/p>\n

Here are some of the key technical insights from experts analyzing the incident:<\/p>\n

\n
\n
\n

\nCrowdstrike Analysis:<\/p>\n

It was a NULL pointer from the memory unsafe C++ language.<\/p>\n

Since I am a professional C++ programmer, let me decode this stack trace dump for you.
\npic.twitter.com\/uUkXB2A8rm<\/a>\n<\/p>\n

— Zach Vorhies \/ Google Whistleblower (@Perpetualmaniac)
\nJuly 19, 2024<\/a>\n<\/p><\/blockquote>\n