Microsoft has blamed EU rules for enabling a faulty security update to cause the world’s biggest IT outage.
The software giant said a 2009 agreement with the European Commission meant it was unable to make security changes that would have blocked the CrowdStrike update that triggered widespread travel and healthcare chaos on Friday.
CrowdStrike’s Falcon system, designed to prevent cyber attacks, has privileged access to a key part of a computer known as the kernel.
This meant that a faulty update last week resulted in millions of Windows computers and servers being unable to load at all, leading to flight cancellations, contactless payments not working and GP surgeries being unable to make appointments.
Microsoft, which offers its own alternative to CrowdStrike known as Windows Defender, agreed in 2009 to allow multiple security providers to install software at the kernel level amid a European competition investigation.
In contrast, Apple blocked access to the kernel on its Mac computers in 2020, which it said would improve security and reliability.
A Microsoft spokesman told the Wall Street Journal that it was unable to make a similar change because of the EU agreement.
Microsoft said on Saturday that the CrowdStrike update had affected 8.5m Windows devices. This was less than 1% of all machines operating the software, but had major impacts because CrowdStrike is widely used in businesses.
The faulty update caused a blue error screen on many computer screens, rendering them unusable until they were fixed. CrowdStrike said on Monday that “a significant number” of the affected computers were back online and apologised for the disruption.
Figures from data company OAG showed that 9,650 flights had been cancelled between Friday and Sunday. While many airlines had recovered, 2,619 flights were cancelled on Sunday, with US airline Delta accounting for most of those.
The NHS said that its systems were back online but that “there still may be some delays as services recover”.
The European Commission pursued Microsoft in the early 2000s over concerns that the company’s popular Windows software gave it an unfair advantage in other areas such as web browsers.
In 2009 the company agreed to boost choice for computer users in browsers and other software.
It comes as new European laws are forcing Apple to open up its iPhone. Under the new Digital Markets Act, the company will have to allow alternative app stores and web browser engines on the iPhone.
Apple has claimed the changes will make the iPhone less safe.
Geeks For Geeks
"*" indicates required fields
Software Asset Management is a business practice that involves managing and optimising the life cycle of software within an organisation.
Software asset management is relevant to many facets of a business - take a look at some of the roles that it can form part of the focus of.
Software vendors come in all shape and sizes - all with their own set of licensing models and rules. We take a look at just a few of them.
As a constantly evolving subject, SAM is not without its challenges. We take a look at some of the most common ones.
Wondering what an investment in SAM could do for your business? Fill out a few details and find out what return you could get!
Answer a few questions about your SAM infrastructure & experience, and we'll put together a personalised recommendation for the future.
A simple health check of what's being used across your Office 365 estate in this FREE, Microsoft backed and easy to setup review.
Just like you would with your vehicle each year, get an annual check up of your software asset management programme.
Overwhelmed by the task of documenting the steps for a successful SAM programme? Get the experts in to help!
Concerned your SAM tools aren't covering your whole estate? Or on the look out for an entirely new tool? Get us in to assist.
Not content with covering all things SAM related, we've teamed up with Capital to provide a comprehensive hardware asset management review.
A simple, one-time reconciliation of the software you have deployed versus the licence entitlement you own.
A regularly scheduled analysis of your organisation's estate, specifically adapted to your needs and budget.
A full appraisal of your Microsoft 365 setup and how best to optimise it through automated recommendations.
An add-on to our SAMplicity One, MOT and Plus offerings, quickly diagnose your ability to migrate your resources to the cloud.
In collaboration with law firm Addleshaw Goddard, ensure the legality of your SAM programme and get assistance with any contract disputes.
Available as standard with SAMplicity Plus, ensure you're compliant if you're unexpectedly audited by a vendor.
We've teamed up with some of the forefront experts in licensing knowledge so you can teach yourself to be an expert too.
Stumped by the continually evolving complexities of SAM? Join us for one of our comprehensive courses, either in-person or online.
It’s chock full of useful advice, exclusive events and interesting articles. Don’t miss out!