Friday, 25 April 2025
29.6 C
Singapore
33.4 C
Thailand
26.4 C
Indonesia
28.7 C
Philippines

EU regulation blamed by Microsoft for CrowdStrike outage

Microsoft blames the EU for the CrowdStrike outage, which affected 8.5 million Windows devices due to a 2009 agreement with the European Commission.

Last Friday, Windows devices worldwide were unexpectedly taken offline. This chaos was triggered by a problematic update from cybersecurity giant CrowdStrike, causing widespread disruption. If you’re unfamiliar with the incident, you can catch up on the details in our previous article summarising the event.

The scale of the impact

With the dust settling, Microsoft has disclosed that approximately 8.5 million Windows devices were affected. This major outage can be traced back to an agreement between Microsoft and the European Commission in 2009.

In a statement to the Wall Street Journal, Microsoft detailed this agreement. In 2009, the European Commission worried that Microsoft might use its dominant market position to gain an unfair advantage. To address these concerns, Microsoft agreed to provide security software makers with the same level of access to Windows that it had.

The root cause

As a result of this agreement, today’s CrowdStrike Falcon security software operates as a kernel module, which gives it full system access. The kernel, often called “the heart of an operating system,” manages crucial system functions like memory, processes, and files. Therefore, when a faulty update is pushed out, the consequences can quickly escalate from bad to worse.

Interestingly, Macs were not affected by this outage. Apple ceased granting developers kernel-level access in 2020 with MacOS Catalina. This decision means Macs can experience a different type of failure. However, it’s worth noting that the European Commission is currently scrutinising Apple’s practices. The Commission has already compelled Apple to permit third-party App Stores under its Digital Markets Act, though it hasn’t yet forced Apple to change its kernel access policies.

Microsoft’s frustration

Microsoft appears to be frustrated. The company feels it was pulled into this predicament by factors beyond its control. The situation highlights the complex interplay between regulatory requirements and the practical realities of maintaining secure and functional software systems.

This incident underscores the challenges tech companies face when balancing compliance with regulatory demands and ensuring their systems remain robust and secure.

Hot this week

Veeam report reveals nearly 70% of organisations still targeted by ransomware

Nearly 70% of organisations were hit by ransomware last year, says Veeam, urging stronger recovery strategies and proactive resilience.

Poco F7 Pro review: Improved battery, flagship feel at a value price

The Poco F7 Pro offers flagship performance, a vibrant display, and great battery life at a value price, with solid camera results too.

Microsoft highlights growing AI-assisted scams and offers advice on how to stay safe

Microsoft’s latest report warns of rising AI-driven scams and outlines new tools and tips to help users stay safe online.

Veeam introduces data resilience maturity model to address gap in organisational preparedness

Veeam launches a global data resilience model to help businesses address the growing gap between perceived and actual IT preparedness.

Bethesda releases The Elder Scrolls IV: Oblivion Remastered – and you can play it now

Bethesda released Oblivion Remastered, which features full visual upgrades and quality-of-life improvements and is now available across major platforms.

WhatsApp adds new Advanced Chat Privacy feature to boost group chat security

WhatsApp's new Advanced Chat Privacy feature helps stop group chat content from being shared or saved outside the app.

Global PC shipments rise 6.7% in early 2025 as AI and tariffs drive demand

PC shipments rose 6.7% in Q1 2025, boosted by AI demand and tariff concerns, but growth is expected to slow later in the year.

GITEX to launch in Vietnam, unlocking growth in Southeast Asia’s digital economy

GITEX announces debut in Vietnam for October 2026, spotlighting its growing tech economy and boosting Southeast Asia’s digital innovation.

GumGum reports digital ads up to 90% more carbon efficient than industry average

GumGum cuts digital ad emissions by up to 90% versus industry norms, using global sustainability standards and Cedara’s carbon reporting tools.

Related Articles

Popular Categories