Microsoft releases a technical dive into the CrowdStrike outage.

CrowdStrike and Microsoft: all the latest news on the global IT outage

Posted Jul 28, 2024

At 5:37 PM UTC

Along with CrowdStrike’s post incident review, this has Microsoft telemetry data and some explanations (performance, tamper resistance) for the kernel driver architecture that crashed millions of Windows systems.

Microsoft has called for locking down that access, and this post again brings up alternate options:

...security vendors can use minimal sensors that run in kernel mode for data collection and enforcement limiting exposure to availability issues. The remainder of the key product functionality includes managing updates, parsing content, and other operations can occur isolated within user mode where recoverability is possible.

Windows Security best practices for integrating and managing security tools

[Microsoft Security Blog]

What happened to all the temporary air conditioning units at the Olympic Village?

Gemini is taking over Google

Microsoft is finally removing the FAT32 partition size limit in Windows 11

Microsoft is now in a handheld gaming PC race

AT&T and Verizon have a beef with T-Mobile’s Starlink satellite service

More from this stream CrowdStrike and Microsoft: all the latest news on the global IT outage

Microsoft calls for Windows changes and resilience after CrowdStrike outage

CrowdStrike CEO reports “97 percent of sensors are back online” after last week’s massive outage.

CrowdStrike sent $10 Uber Eats gift cards to ”teammates and partners” who helped fix the outage.

How Microsoft helped clean up CrowdStrike’s mess