Wednesday, 15 October 2025
30.7 C
Singapore
31.3 C
Thailand
24 C
Indonesia
29.1 C
Philippines

EU regulation blamed by Microsoft for CrowdStrike outage

Microsoft blames the EU for the CrowdStrike outage, which affected 8.5 million Windows devices due to a 2009 agreement with the European Commission.

Last Friday, Windows devices worldwide were unexpectedly taken offline. This chaos was triggered by a problematic update from cybersecurity giant CrowdStrike, causing widespread disruption. If you’re unfamiliar with the incident, you can catch up on the details in our previous article summarising the event.

The scale of the impact

With the dust settling, Microsoft has disclosed that approximately 8.5 million Windows devices were affected. This major outage can be traced back to an agreement between Microsoft and the European Commission in 2009.

In a statement to the Wall Street Journal, Microsoft detailed this agreement. In 2009, the European Commission worried that Microsoft might use its dominant market position to gain an unfair advantage. To address these concerns, Microsoft agreed to provide security software makers with the same level of access to Windows that it had.

The root cause

As a result of this agreement, today’s CrowdStrike Falcon security software operates as a kernel module, which gives it full system access. The kernel, often called “the heart of an operating system,” manages crucial system functions like memory, processes, and files. Therefore, when a faulty update is pushed out, the consequences can quickly escalate from bad to worse.

Interestingly, Macs were not affected by this outage. Apple ceased granting developers kernel-level access in 2020 with MacOS Catalina. This decision means Macs can experience a different type of failure. However, it’s worth noting that the European Commission is currently scrutinising Apple’s practices. The Commission has already compelled Apple to permit third-party App Stores under its Digital Markets Act, though it hasn’t yet forced Apple to change its kernel access policies.

Microsoft’s frustration

Microsoft appears to be frustrated. The company feels it was pulled into this predicament by factors beyond its control. The situation highlights the complex interplay between regulatory requirements and the practical realities of maintaining secure and functional software systems.

This incident underscores the challenges tech companies face when balancing compliance with regulatory demands and ensuring their systems remain robust and secure.

Hot this week

Exabeam named a leader in 2025 Gartner Magic Quadrant for SIEM for sixth time

Exabeam has been named a Leader in the 2025 Gartner Magic Quadrant for SIEM for the sixth time, highlighting its AI-driven security innovation.

FLAG enhances undersea network capacity with Ciena’s WaveLogic 6

FLAG upgrades its India Connectivity Mesh with Ciena’s WaveLogic 6, boosting capacity and improving efficiency on key subsea routes.

Armis and Fortinet expand partnership to boost cyber resilience for global businesses

Armis and Fortinet have expanded their partnership to enhance cyber resilience with deeper integration, unified visibility, and automated security enforcement.

DEEBOT X11 OmniCyclone review: Powerful suction with a bagless self-emptying station

The Ecovacs DEEBOT X11 OmniCyclone delivers powerful suction, dual cleaning solutions, and a bagless self-emptying station for modern homes.

Hitachi Vantara partners with Red Hat to accelerate hybrid cloud adoption

Hitachi Vantara and Red Hat launch a hybrid cloud solution that simplifies VM migration, reduces vendor lock-in, and modernises legacy infrastructure.

Salesforce launches Agentforce 360 to power the era of the agentic enterprise

Salesforce launches Agentforce 360, an AI platform designed to boost human potential and transform how businesses work in the age of AI.

Singlife partners with Salesforce to launch AI agent for customer service

Singlife partners with Salesforce to launch an AI agent that enhances customer service response times and efficiency.

ASUS launches Ascent GX10 personal AI supercomputer

ASUS launches the Ascent GX10 personal AI supercomputer, delivering petaflop-scale performance in a compact desktop form.

Global mobile app demand remains resilient as APAC leads growth surge

Adjust’s 2025 Mobile App Growth Report shows global app demand rising, led by APAC’s strong growth in gaming and entertainment.

Related Articles