A massive network outage caused by a third-party security sensor running on Microsoft cloud services has disrupted numerous institutions across Australia, including major banks, supermarkets, and media outlets.
The outage, which began around 3 PM on Friday, has impacted institutions like Commonwealth Bank, Optus, and Australia Post, among others.
The issue appears to be linked to a problem with the Crowdstrike Falcon sensor, a cybersecurity software used by many businesses to gather security data.
Reports indicate that the outage has caused widespread "blue screen" errors, forcing devices into continuous restart cycles.
"I am aware of a large-scale technical outage affecting a number of companies and services across Australia this afternoon. Our current information is this outage relates to a technical issue with a third-party software platform employed by affected companies. There is no information to suggest it is a cyber security incident," National Cyber Security Coordinator Michelle McGuinness confirmed the outage on social media platform X.
I am aware of a large-scale technical outage affecting a number of companies and services across Australia this afternoon.
Our current information is this outage relates to a technical issue with a third-party software platform employed by affected companies.
— National Cyber Security Coordinator (@AUCyberSecCoord) July 19, 2024
The outage has led to significant disruptions:
- Banks: Institutions like NAB, Bendigo Bank, Suncorp Bank, and Commonwealth Bank have reported issues, affecting customer transactions.
- Supermarkets: Customers at Coles and Woolworths have reported malfunctioning self-serve checkout systems.
- Airlines: Qantas has experienced delays in boarding, and international and domestic check-in stations at Perth Airport have been affected.
- Media Outlets: Networks such as ABC, SBS, Channel 7, Channel 9, and News Corp Australia have faced disruptions.
- Public Services: Services NSW and other government departments have reported system failures, impacting service delivery.
Despite these widespread issues, authorities have emphasized that emergency services remain operational. NSW Police have urged the public to use Triple 0 only for emergencies as some of their systems are down.
Victoria Police confirmed that their online reporting systems and Triple 0 emergency line are fully functional.
Crowdstrike acknowledged the issue on their website:
"Crowdstrike is aware of reports of crashes on Windows hosts related to the Falcon sensor. Symptoms include hosts experiencing a bugcheck/blue screen error. Our engineering teams are actively working to resolve this issue."
Airlines using Microsoft cloud services in the Central U.S. region like Frontier, Allegiant, and Sun Country were particularly affected, , leading to the grounding and cancellation of several flights
The incident highlights the potential vulnerabilities in global IT infrastructures, particularly when dependent on key third-party software platforms. While the exact cause is still being investigated, initial reports suggest that the issue is non-malicious, likely stemming from a technical glitch within Crowdstrike's systems.
As businesses and services work to restore normal operations, authorities continue to monitor the situation and provide updates. The incident underscores the critical importance of robust cybersecurity and IT management practices in safeguarding against such widespread disruptions