All Article Properties:
{
"access_control": false,
"status": "publish",
"objectType": "Article",
"id": "2284512",
"signature": "Article:2284512",
"url": "https://staging.dailymaverick.co.za/article/2024-07-20-global-it-outage-highlights-the-hazards-of-technology-software-concentration/",
"shorturl": "https://staging.dailymaverick.co.za/article/2284512",
"slug": "global-it-outage-highlights-the-hazards-of-technology-software-concentration",
"contentType": {
"id": "1",
"name": "Article",
"slug": "article"
},
"views": 0,
"comments": 4,
"preview_limit": null,
"excludedFromGoogleSearchEngine": 0,
"title": "Global IT outage highlights the hazards of technology software concentration",
"firstPublished": "2024-07-20 16:07:00",
"lastUpdate": "2024-07-20 16:17:59",
"categories": [
{
"id": "9",
"name": "Business Maverick",
"signature": "Category:9",
"slug": "business-maverick",
"typeId": {
"typeId": "1",
"name": "Daily Maverick",
"slug": "",
"includeInIssue": "0",
"shortened_domain": "",
"stylesheetClass": "",
"domain": "staging.dailymaverick.co.za",
"articleUrlPrefix": "",
"access_groups": "[]",
"locale": "",
"preview_limit": null
},
"parentId": null,
"parent": [],
"image": "",
"cover": "",
"logo": "",
"paid": "0",
"objectType": "Category",
"url": "https://staging.dailymaverick.co.za/category/business-maverick/",
"cssCode": "",
"template": "default",
"tagline": "",
"link_param": null,
"description": "",
"metaDescription": "",
"order": "0",
"pageId": null,
"articlesCount": null,
"allowComments": "1",
"accessType": "freecount",
"status": "1",
"children": [],
"cached": true
},
{
"id": "29",
"name": "South Africa",
"signature": "Category:29",
"slug": "south-africa",
"typeId": {
"typeId": "1",
"name": "Daily Maverick",
"slug": "",
"includeInIssue": "0",
"shortened_domain": "",
"stylesheetClass": "",
"domain": "staging.dailymaverick.co.za",
"articleUrlPrefix": "",
"access_groups": "[]",
"locale": "",
"preview_limit": null
},
"parentId": null,
"parent": [],
"image": "",
"cover": "",
"logo": "",
"paid": "0",
"objectType": "Category",
"url": "https://staging.dailymaverick.co.za/category/south-africa/",
"cssCode": "",
"template": "default",
"tagline": "",
"link_param": null,
"description": "Daily Maverick is an independent online news publication and weekly print newspaper in South Africa.\r\n\r\nIt is known for breaking some of the defining stories of South Africa in the past decade, including the Marikana Massacre, in which the South African Police Service killed 34 miners in August 2012.\r\n\r\nIt also investigated the Gupta Leaks, which won the 2019 Global Shining Light Award.\r\n\r\nThat investigation was credited with exposing the Indian-born Gupta family and former President Jacob Zuma for their role in the systemic political corruption referred to as state capture.\r\n\r\nIn 2018, co-founder and editor-in-chief Branislav ‘Branko’ Brkic was awarded the country’s prestigious Nat Nakasa Award, recognised for initiating the investigative collaboration after receiving the hard drive that included the email tranche.\r\n\r\nIn 2021, co-founder and CEO Styli Charalambous also received the award.\r\n\r\nDaily Maverick covers the latest political and news developments in South Africa with breaking news updates, analysis, opinions and more.",
"metaDescription": "",
"order": "0",
"pageId": null,
"articlesCount": null,
"allowComments": "1",
"accessType": "freecount",
"status": "1",
"children": [],
"cached": true
},
{
"id": "38",
"name": "World",
"signature": "Category:38",
"slug": "world",
"typeId": {
"typeId": "1",
"name": "Daily Maverick",
"slug": "",
"includeInIssue": "0",
"shortened_domain": "",
"stylesheetClass": "",
"domain": "staging.dailymaverick.co.za",
"articleUrlPrefix": "",
"access_groups": "[]",
"locale": "",
"preview_limit": null
},
"parentId": null,
"parent": [],
"image": "",
"cover": "",
"logo": "",
"paid": "0",
"objectType": "Category",
"url": "https://staging.dailymaverick.co.za/category/world/",
"cssCode": "",
"template": "default",
"tagline": "",
"link_param": null,
"description": "",
"metaDescription": "",
"order": "0",
"pageId": null,
"articlesCount": null,
"allowComments": "1",
"accessType": "freecount",
"status": "1",
"children": [],
"cached": true
},
{
"id": "387188",
"name": "Maverick News",
"signature": "Category:387188",
"slug": "maverick-news",
"typeId": {
"typeId": "1",
"name": "Daily Maverick",
"slug": "",
"includeInIssue": "0",
"shortened_domain": "",
"stylesheetClass": "",
"domain": "staging.dailymaverick.co.za",
"articleUrlPrefix": "",
"access_groups": "[]",
"locale": "",
"preview_limit": null
},
"parentId": null,
"parent": [],
"image": "",
"cover": "",
"logo": "",
"paid": "0",
"objectType": "Category",
"url": "https://staging.dailymaverick.co.za/category/maverick-news/",
"cssCode": "",
"template": "default",
"tagline": "",
"link_param": null,
"description": "",
"metaDescription": "",
"order": "0",
"pageId": null,
"articlesCount": null,
"allowComments": "1",
"accessType": "freecount",
"status": "1",
"children": [],
"cached": true
}
],
"content_length": 3993,
"contents": "<span style=\"font-weight: 400;\">Technology has invaded most aspects of our lives, but this has never been more glaringly apparent than on Friday, 19 July, when a cybersecurity update from CrowdStrike malfunctioned, causing a </span><a href=\"https://www.dailymaverick.co.za/article/2024-07-19-sas-capitec-hit-botched-update-of-cybersecurity-program-causes-global-microsoft-disruptions/\"><span style=\"font-weight: 400;\">global tech outage</span></a><span style=\"font-weight: 400;\">.</span>\r\n\r\n<span style=\"font-weight: 400;\">The fault was caused by a defect in a Falcon content update for Windows hosts. Mac and Linux hosts were not affected. However, the tech fallout had worldwide effects, grounding airlines, silencing broadcasters and affecting servers from Australia to the US to South Africa.</span>\r\n\r\n<span style=\"font-weight: 400;\">Arthur Goldstuck, head of World Wide Worx, said the outage was compounded by the fact that so many organisations now depend on the cloud. “So much of Microsoft’s cloud services are interlinked and the problem here is multiplied by CrowdStrike’s systems being intended to unify all their threat detection and combating tools,” he told news broadcaster eNCA. The broadcaster had also experienced some downtime during the outage.</span>\r\n\r\n<span style=\"font-weight: 400;\">Security Scorecard chief executive Dr Aleksandr Yampolskiy said the incident served to highlight the importance of using multiple vendors so that companies remain protected if one firewall goes down. “[The] global outage is a reminder of the fragility and systemic ‘nth-party’ concentration risk of the technology that runs everyday life: airlines, banks, telecoms, stock exchanges and more,” he said, adding that SecurityScorecard research, in collaboration with McKinsey, shows that 62% of the global external attack surface is concentrated in the products and services of just 15 companies.</span>\r\n\r\n<span style=\"font-weight: 400;\">“You need to have diverse systems, know where your single points of failure are, and proactively stress-test through tabletop exercises and simulations of outages,” said Yampolskiy.</span>\r\n\r\n<span style=\"font-weight: 400;\">The report points out that although companies spend hundreds of thousands of dollars per year managing cyber risk within their vendor and third-party ecosystem, and millions on cyber programs, their billion-dollar business is only as good as the cybersecurity of their smallest vendor. “The interconnected nature of our digital landscape requires a shift in how companies think about their cyber ecosystem risk — it is no longer just about your resilience; you need to consider the broader system and how to build mutual support with peers, competitors and your vendors,” says Charlie Lewis, partner at McKinsey and a co-author of the report.</span>\r\n\r\n<p><a href=\"https://www.dailymaverick.co.za/tech-outages-impact-in-washington-dulles-international-airport-in-virginia/\"><img loading=\"lazy\" class=\"size-full wp-image-2284540\" src=\"https://www.dailymaverick.co.za/wp-content/uploads/2024/07/12380458-scaled.jpg\" alt=\"\" width=\"2560\" height=\"1708\" /></a> <em>A flight board shows numerous delayed flights and some cancelled flights at Washington Dulles International Airport in Dulles, Virginia, US, 19 July 2024. Operations at various airports and airlines have been impacted by a global tech outage in systems running Microsoft Windows linked to a faulty CrowdStrike cybersecurity software update. (Photo: EPA-EFE / MICHAEL REYNOLDS)</em></p>\r\n<h4><b>Double whammy for Microsoft users</b></h4>\r\n<span style=\"font-weight: 400;\">Systems that were most likely to be impacted by the CrowdStrike outage were those running Falcon sensor for Windows version 7.11 and above. The update was designed to target newly observed, malicious-named pipes being used in cyberattacks. Unfortunately, the configuration update triggered a logic error that resulted in an operating system crash.</span>\r\n\r\n<span style=\"font-weight: 400;\">Microsoft users around the globe had to deal with a double whammy. The first was the system crash caused by CrowdStrike. In addition to that, Microsoft suffered an unrelated outage of its Azure services and Microsoft 365 suite of apps in central US.</span>\r\n\r\n<span style=\"font-weight: 400;\">CrowdStrike founder and chief executive George Kurtz put out a statement on social media and the company’s blog, saying the issue was quickly identified and a fix put in place. “This was not a cyberattack. We know that adversaries and bad actors will try to exploit events like this. As we resolve this incident, you have my commitment to provide full transparency on how this occurred and steps we’re taking to prevent anything like this from happening again,” he said.</span>\r\n\r\n<span style=\"font-weight: 400;\">CrowdStrike offers a range of security services using cloud-based software. Its website boasts that it protects 538 of the Fortune 1,000 companies. </span><b>DM</b>",
"teaser": "Global IT outage highlights the hazards of technology software concentration",
"externalUrl": "",
"sponsor": null,
"authors": [
{
"id": "64897",
"name": "Neesa Moodley",
"image": "https://www.dailymaverick.co.za/wp-content/uploads/2023/09/NeesaMoodley.jpeg",
"url": "https://staging.dailymaverick.co.za/author/neesa-moodley/",
"editorialName": "neesa-moodley",
"department": "",
"name_latin": ""
}
],
"description": "",
"keywords": [
{
"type": "Keyword",
"data": {
"keywordId": "3711",
"name": "Microsoft",
"url": "https://staging.dailymaverick.co.za/keyword/microsoft/",
"slug": "microsoft",
"description": "",
"articlesCount": 0,
"replacedWith": null,
"display_name": "Microsoft",
"translations": null
}
},
{
"type": "Keyword",
"data": {
"keywordId": "6093",
"name": "Technology",
"url": "https://staging.dailymaverick.co.za/keyword/technology/",
"slug": "technology",
"description": "",
"articlesCount": 0,
"replacedWith": null,
"display_name": "Technology",
"translations": null
}
},
{
"type": "Keyword",
"data": {
"keywordId": "78440",
"name": "Arthur Goldstuck",
"url": "https://staging.dailymaverick.co.za/keyword/arthur-goldstuck/",
"slug": "arthur-goldstuck",
"description": "",
"articlesCount": 0,
"replacedWith": null,
"display_name": "Arthur Goldstuck",
"translations": null
}
},
{
"type": "Keyword",
"data": {
"keywordId": "85262",
"name": "Cybersecurity",
"url": "https://staging.dailymaverick.co.za/keyword/cybersecurity/",
"slug": "cybersecurity",
"description": "",
"articlesCount": 0,
"replacedWith": null,
"display_name": "Cybersecurity",
"translations": null
}
},
{
"type": "Keyword",
"data": {
"keywordId": "213252",
"name": "World Wide Worx",
"url": "https://staging.dailymaverick.co.za/keyword/world-wide-worx/",
"slug": "world-wide-worx",
"description": "",
"articlesCount": 0,
"replacedWith": null,
"display_name": "World Wide Worx",
"translations": null
}
},
{
"type": "Keyword",
"data": {
"keywordId": "383924",
"name": "Neesa Moodley",
"url": "https://staging.dailymaverick.co.za/keyword/neesa-moodley/",
"slug": "neesa-moodley",
"description": "",
"articlesCount": 0,
"replacedWith": null,
"display_name": "Neesa Moodley",
"translations": null
}
},
{
"type": "Keyword",
"data": {
"keywordId": "392277",
"name": "Crowdstrike",
"url": "https://staging.dailymaverick.co.za/keyword/crowdstrike/",
"slug": "crowdstrike",
"description": "",
"articlesCount": 0,
"replacedWith": null,
"display_name": "Crowdstrike",
"translations": null
}
},
{
"type": "Keyword",
"data": {
"keywordId": "421394",
"name": "IT outage",
"url": "https://staging.dailymaverick.co.za/keyword/it-outage/",
"slug": "it-outage",
"description": "",
"articlesCount": 0,
"replacedWith": null,
"display_name": "IT outage",
"translations": null
}
},
{
"type": "Keyword",
"data": {
"keywordId": "421395",
"name": "SecurityScorecard",
"url": "https://staging.dailymaverick.co.za/keyword/securityscorecard/",
"slug": "securityscorecard",
"description": "",
"articlesCount": 0,
"replacedWith": null,
"display_name": "SecurityScorecard",
"translations": null
}
}
],
"short_summary": null,
"source": null,
"related": [],
"options": [],
"attachments": [
{
"id": "59462",
"name": "epaselect epa11487945 A flight board shows numerous delayed flights, and some cancelled flights, at Washington Dulles International Airport in Dulles, Virginia, USA, 19 July 2024. Operations at various airports and airlines have reported being impacted by a global tech outage in systems running Microsoft Windows linked to a faulty CrowdStrike cyber-security software update. According to CrowdStrikes CEO, the issue has been identified, isolated and a fix has been deployed. Airlines in Europe, Asia, the Middle East and North America have reportedly been impacted and some businesses have also been affected. EPA-EFE/MICHAEL REYNOLDS",
"description": "<span style=\"font-weight: 400;\">Technology has invaded most aspects of our lives, but this has never been more glaringly apparent than on Friday, 19 July, when a cybersecurity update from CrowdStrike malfunctioned, causing a </span><a href=\"https://www.dailymaverick.co.za/article/2024-07-19-sas-capitec-hit-botched-update-of-cybersecurity-program-causes-global-microsoft-disruptions/\"><span style=\"font-weight: 400;\">global tech outage</span></a><span style=\"font-weight: 400;\">.</span>\r\n\r\n<span style=\"font-weight: 400;\">The fault was caused by a defect in a Falcon content update for Windows hosts. Mac and Linux hosts were not affected. However, the tech fallout had worldwide effects, grounding airlines, silencing broadcasters and affecting servers from Australia to the US to South Africa.</span>\r\n\r\n<span style=\"font-weight: 400;\">Arthur Goldstuck, head of World Wide Worx, said the outage was compounded by the fact that so many organisations now depend on the cloud. “So much of Microsoft’s cloud services are interlinked and the problem here is multiplied by CrowdStrike’s systems being intended to unify all their threat detection and combating tools,” he told news broadcaster eNCA. The broadcaster had also experienced some downtime during the outage.</span>\r\n\r\n<span style=\"font-weight: 400;\">Security Scorecard chief executive Dr Aleksandr Yampolskiy said the incident served to highlight the importance of using multiple vendors so that companies remain protected if one firewall goes down. “[The] global outage is a reminder of the fragility and systemic ‘nth-party’ concentration risk of the technology that runs everyday life: airlines, banks, telecoms, stock exchanges and more,” he said, adding that SecurityScorecard research, in collaboration with McKinsey, shows that 62% of the global external attack surface is concentrated in the products and services of just 15 companies.</span>\r\n\r\n<span style=\"font-weight: 400;\">“You need to have diverse systems, know where your single points of failure are, and proactively stress-test through tabletop exercises and simulations of outages,” said Yampolskiy.</span>\r\n\r\n<span style=\"font-weight: 400;\">The report points out that although companies spend hundreds of thousands of dollars per year managing cyber risk within their vendor and third-party ecosystem, and millions on cyber programs, their billion-dollar business is only as good as the cybersecurity of their smallest vendor. “The interconnected nature of our digital landscape requires a shift in how companies think about their cyber ecosystem risk — it is no longer just about your resilience; you need to consider the broader system and how to build mutual support with peers, competitors and your vendors,” says Charlie Lewis, partner at McKinsey and a co-author of the report.</span>\r\n\r\n[caption id=\"attachment_2284540\" align=\"alignnone\" width=\"2560\"]<a href=\"https://www.dailymaverick.co.za/tech-outages-impact-in-washington-dulles-international-airport-in-virginia/\"><img class=\"size-full wp-image-2284540\" src=\"https://www.dailymaverick.co.za/wp-content/uploads/2024/07/12380458-scaled.jpg\" alt=\"\" width=\"2560\" height=\"1708\" /></a> <em>A flight board shows numerous delayed flights and some cancelled flights at Washington Dulles International Airport in Dulles, Virginia, US, 19 July 2024. Operations at various airports and airlines have been impacted by a global tech outage in systems running Microsoft Windows linked to a faulty CrowdStrike cybersecurity software update. (Photo: EPA-EFE / MICHAEL REYNOLDS)</em>[/caption]\r\n<h4><b>Double whammy for Microsoft users</b></h4>\r\n<span style=\"font-weight: 400;\">Systems that were most likely to be impacted by the CrowdStrike outage were those running Falcon sensor for Windows version 7.11 and above. The update was designed to target newly observed, malicious-named pipes being used in cyberattacks. Unfortunately, the configuration update triggered a logic error that resulted in an operating system crash.</span>\r\n\r\n<span style=\"font-weight: 400;\">Microsoft users around the globe had to deal with a double whammy. The first was the system crash caused by CrowdStrike. In addition to that, Microsoft suffered an unrelated outage of its Azure services and Microsoft 365 suite of apps in central US.</span>\r\n\r\n<span style=\"font-weight: 400;\">CrowdStrike founder and chief executive George Kurtz put out a statement on social media and the company’s blog, saying the issue was quickly identified and a fix put in place. “This was not a cyberattack. We know that adversaries and bad actors will try to exploit events like this. As we resolve this incident, you have my commitment to provide full transparency on how this occurred and steps we’re taking to prevent anything like this from happening again,” he said.</span>\r\n\r\n<span style=\"font-weight: 400;\">CrowdStrike offers a range of security services using cloud-based software. Its website boasts that it protects 538 of the Fortune 1,000 companies. </span><b>DM</b>",
"focal": "50% 50%",
"width": 0,
"height": 0,
"url": "https://dmcdn.whitebeard.net/dailymaverick/wp-content/uploads/2024/07/12379859.jpg",
"transforms": [
{
"x": "200",
"y": "100",
"url": "https://dmcdn.whitebeard.net/i/xLrh47WegGb6h4xE5mTm21jNhpo=/200x100/smart/filters:strip_exif()/file/dailymaverick/wp-content/uploads/2024/07/12379859.jpg"
},
{
"x": "450",
"y": "0",
"url": "https://dmcdn.whitebeard.net/i/2MC69jUyqz4grFPFdiB0LVLmdUw=/450x0/smart/file/dailymaverick/wp-content/uploads/2024/07/12379859.jpg"
},
{
"x": "800",
"y": "0",
"url": "https://dmcdn.whitebeard.net/i/oU0gNokMKEzlIcLJ721_wq7qcuw=/800x0/smart/filters:strip_exif()/file/dailymaverick/wp-content/uploads/2024/07/12379859.jpg"
},
{
"x": "1200",
"y": "0",
"url": "https://dmcdn.whitebeard.net/i/ZeALsURycIkIZYX640o9L22slpg=/1200x0/smart/filters:strip_exif()/file/dailymaverick/wp-content/uploads/2024/07/12379859.jpg"
},
{
"x": "1600",
"y": "0",
"url": "https://dmcdn.whitebeard.net/i/W9SUhZk2ErmjDFI4R89clCMR4nc=/1600x0/smart/filters:strip_exif()/file/dailymaverick/wp-content/uploads/2024/07/12379859.jpg"
}
],
"url_thumbnail": "https://dmcdn.whitebeard.net/i/xLrh47WegGb6h4xE5mTm21jNhpo=/200x100/smart/filters:strip_exif()/file/dailymaverick/wp-content/uploads/2024/07/12379859.jpg",
"url_medium": "https://dmcdn.whitebeard.net/i/2MC69jUyqz4grFPFdiB0LVLmdUw=/450x0/smart/file/dailymaverick/wp-content/uploads/2024/07/12379859.jpg",
"url_large": "https://dmcdn.whitebeard.net/i/oU0gNokMKEzlIcLJ721_wq7qcuw=/800x0/smart/filters:strip_exif()/file/dailymaverick/wp-content/uploads/2024/07/12379859.jpg",
"url_xl": "https://dmcdn.whitebeard.net/i/ZeALsURycIkIZYX640o9L22slpg=/1200x0/smart/filters:strip_exif()/file/dailymaverick/wp-content/uploads/2024/07/12379859.jpg",
"url_xxl": "https://dmcdn.whitebeard.net/i/W9SUhZk2ErmjDFI4R89clCMR4nc=/1600x0/smart/filters:strip_exif()/file/dailymaverick/wp-content/uploads/2024/07/12379859.jpg",
"type": "image"
}
],
"summary": "A systems crash around the world has confirmed experts’ previous warnings that the domination of a few suppliers carries huge technology software risks. ",
"template_type": null,
"dm_custom_section_label": null,
"elements": [],
"seo": {
"search_title": "Global IT outage highlights the hazards of technology software concentration",
"search_description": "<span style=\"font-weight: 400;\">Technology has invaded most aspects of our lives, but this has never been more glaringly apparent than on Friday, 19 July, when a cybersecurity update from CrowdStrike ",
"social_title": "Global IT outage highlights the hazards of technology software concentration",
"social_description": "<span style=\"font-weight: 400;\">Technology has invaded most aspects of our lives, but this has never been more glaringly apparent than on Friday, 19 July, when a cybersecurity update from CrowdStrike ",
"social_image": ""
},
"cached": true,
"access_allowed": true
} 
A flight board shows numerous delayed flights and some cancelled flights at Washington Dulles International Airport in Dulles, Virginia, US, 19 July 2024. Operations at various airports and airlines have been impacted by a global tech outage in systems running Microsoft Windows linked to a faulty CrowdStrike cybersecurity software update. (Photo: EPA-EFE / MICHAEL REYNOLDS)