Cecure Intelligence Limited

CIL Support

CIL ADVISORY

CrowdStrike Falcon Update Issue

  • MAY 27TH, 2024
  • 2min read
CrowdStrike Falcon Update Issue

Introduction

By now you might already be aware of a recent issue with CrowdStrike Falcon Sensor. A faulty update triggered compatibility problems with Windows, leading to system instability and potential crashes.

Issue Overview

  • What happened: A bug in the Falcon Sensor update caused BSOD (Blue Screen of Death) errors on some systems.
  • Impact: This could potentially affect device functionality and stability.
  • Current status: CrowdStrike has acknowledged the issue and is working on a fix. However, a rollback to the previous version is not possible.

Steps to Take

  • IT teams: Identify and prioritise critical systems potentially impacted.
  • All teams: Report unusual system behaviour immediately to the IT team.

Temporary Fix (For IT Team Only)

  1. Restart in Safe Mode: Restart your computer. Press F8 repeatedly (or Shift + F8 for newer versions) to access the Advanced Boot Options menu. Select Safe Mode and press Enter.
  2. Access Advanced Startup Options:
    • If you can access Windows: Hold Shift and click Restart from the Start menu. Navigate to Troubleshoot > Advanced Options > Command Prompt.
    • If you can’t access Windows: Boot from Windows installation media (USB/DVD). Select Repair your computer. Go to Troubleshoot > Advanced Options > Command Prompt.
  3. Rename the CrowdStrike Driver File: In Command Prompt, type:
    rename C:WindowsSystem32driversCrowdStrikeCSAgent.sys CSAgent.sys_archive
    Locate and delete C-00000291*.sys.
  4. Restart Your PC: Exit Command Prompt and restart normally.

This should resolve the blue screen issue.

AWS Resource Recovery

For AWS resources affected by the CrowdStrike Falcon agent, refer to: Recover AWS resources affected by the CrowdStrike Falcon agent | AWS re:Post

Explore more CIL Advisories

Phishing Emails

Phishing Emails

IntroductionPhishing attacks are becoming increasingly sophisticated, with malicious actors exploiting current events like the Paris 2024 Olympics Games to run…

DECEMBER 16TH, 2024

Read More
Preventing Deep Fake Scams

Preventing Deep Fake Scams

IntroductionMalicious actors always find creative ways to defraud unsuspecting individuals; deep fake scams are one of the latest ways with…

DECEMBER 9TH, 2024

Read More
Trouble Looms: Ransomware Attacks on the Rise

Trouble Looms: Ransomware Attacks on the Rise

IntroductionRansomware is a type of malware which prevents you from accessing your device and the data stored on it, usually…

DECEMBER 2ND, 2024

Read More

Never miss a CIL Security Advisory

Stay informed with the latest security updates and insights from CIL.

CrowdStrike Falcon Update Issue

Contact Us

Message Sent!

Thank you for reaching out. We have received your message and will get back to you shortly.

Check your email for a confirmation from us.

Start a project

Project Request Submitted!

Thank you for your interest. Our team will review your project details and reach out to you soon.

Check your email for a confirmation from us.

We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies. You can manage your preferences or learn more in our Cookie Policy .

Cookie Settings

We use cookies to improve your experience on our website. Some cookies are essential for the website to function, while others help us understand how you interact with our site. You can choose which cookies to accept below.