ARES notice - Hospital and Emergency Services outages reported due to Cybersecurity Software issue.

Confirming what Mickey McInnus stated just a bit ago.

I have notified District 7 EC’s of this issues, and am passing along to the STX Section what I know as of this time.

WCARES is on Alert Status as of 02:30 am this Friday morning, July 19, 2024.

I have been notified there is a major nationwide, and World Wide, outage of Microsoft Systems due to a Cybersecurity software called CrowdStrike having issues. It is not known as of this notice if it is a breach, or system software failure . Laptops and machines rebooting continuously and blue screen of death.

This is affecting Hospitals in my area at this time. Backup systems are in operation.

This is not to be broadcast. This is for ARES operational preparations.

WCARES ARCHES is notified to be on to be on standby in the event we are activated to support the hospitals to pass messaging traffic. Teams to support the hospitals may be deployed.

Emergency Services across the country are reported as having issues. I have heard of some 911 systems being affected. Do not know the full impact of this issue, as this is not going to be broadcast publicly.

Again, this is a worldwide impact of Microsoft Systems that have corporate CrowdStrike software.

This is affecting Banks, Airlines, Broadcasters and Emergency Services are among the companies being affected.

Here is an article with a bit of information.

https://www.nytimes.com/live/2024/07/19/business/global-tech-outage#crowdstrike-outage-flights-banks

Search on Crowdstrike and/or Microsoft issues for more information.

73’s

Terry Jones, K5LGV

District 7 Emergency Coordinator

Williamson County ARES

RACES CLO, #12-491

Williamson County, Texas

512-426-2351

wc-ares.org

EM10co

There is a workaround. Pls see the attached.

Karl

This is not a cyber attack according to the Crowdstrike website. Rather this is a bug to a software update. It only affects Microsoft OS devices that use Crowdstrike Falcon software, which is widely used by many businesses.

This was an error that an update was pushed out during a update windows and they have fixed the issue.

We only had 21 computers out of 300 affected and 4 servers out of 75.

The fix is do have your computer plugged in to a network cable (wifi wont work) and reboot the computer a few times

If that fails

o Boot Windows into Safe Mode or the Windows Recovery Environment

o Navigate to the %WINDIR%\System32\drivers\CrowdStrike directory

o Locate the file matching “C-00000291*.sys”, and delete it.

o Boot the host normally.

This has worked with all of our company computers and servers that had this glitch.

This was a software error and in no way a break or security risk.

This is a heads up of what may happen…

Are we prepared?

73,

dale
W5WI
WTX Section Manager

To many points of failure.

This was an error that an update was pushed out during a update windows and they have fixed the issue.

We only had 21 computers out of 300 affected and 4 servers out of 75.

The fix is do have your computer plugged in to a network cable (wifi wont work) and reboot the computer a few times

If that fails

o Boot Windows into Safe Mode or the Windows Recovery Environment

o Navigate to the %WINDIR%\System32\drivers\CrowdStrike directory

o Locate the file matching “C-00000291*.sys”, and delete it.

o Boot the host normally.

This has worked with all of our company computers and servers that had this glitch.

This was a software error and in no way a break or security risk.