Hackers could shut down world using ‘global IT outage’ attack as experts warn ‘we must learn’ before it’s too late

HACKERS could shut down systems across the world with an attack that replicates today's global IT outage.

That's the warning from cybersecurity experts who say "we must learn" from today's worldwide computer bungle.

Computers booting up on Friday, July 19 were faced with a "Blue Screen of Death".

It's impacted airlines, broadcasters, supermarkets, banks, and more around the world – and a rogue update has been blamed.

The outage has been linked to CrowdStrike, which provides security tech for businesses.

And experts have told The U.S. Sun how hackers could exploit a similar trick to cause mass IT chaos.

"This is similar to a supply chain attack," said Martin Jartelius, Chief Security Officer at Outpost24.

"If an attacker had backdoored such an update to open systems to attacks or to encrypt them, the exact same systems would have been impacted.

"This is why supply chain attacks and defence has been increasingly important."

The update affected Windows machines around the world, preventing PCs from booting up and even turning servers off.

This has had knock-on effects on systems around the world.

The outage first showed up in Australia as the country woke up to the faulty update.

"This incident serves as a crucial reminder of the importance of the robustness of our security and availability, which hinge on the reliability of our service providers," Martin said.

In the UK, Sky News went off air completely – and summer flights were delayed.

We woke up to see IT issues essentially spreading across the globe, almost in the same way as COVID-19

Adam PiltonSecurity expert

US airlines also experienced communications issues as a result of the outage.

Security expert Adam Pilton told us that the bungled update is like a virus spreading across the world.

"This morning, we woke up to see IT issues essentially spreading across the globe, almost in the same way as COVID-19," Adam said.

He said there's "no reason to be fearful" because it's just an update this time – but that might not be the case next time.

"We must learn from this," Adam said.

"Now today's issue appears to be a technical issue coming from poor practice and ultimately an erroneous update.

"But we must also consider if a cyber-criminal had taken down CrowdStrike or any other large player within the supply chain, what would the consequences be? Today's event has demonstrated this."

And speaking to The U.S. Sun, Jano Bermudes, partner at security firm CyXcel, added: "Ransomware groups and malicious actors will be looking on in envy at the disruption caused this morning."

CrowdStrike has admitted responsibility for the mass outage.

In a post to X, formerly Twitter, CEO George Kurtz said: "CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts."

He added that a fix has been deployed to prevent more computers going offline.

In a statement sent to The U.S. Sun, CrowdStrike said: "This is not a security incident or cyberattack.

Our team is fully mobilized to ensure the security and stability of CrowdStrike customers

CrowdStrike

"The issue has been identified, isolated and a fix has been deployed.

"We refer customers to the support portal for the latest updates and will continue to provide complete and continuous updates on our website.

"We further recommend organizations ensure they’re communicating with CrowdStrike representatives through official channels.

"Our team is fully mobilized to ensure the security and stability of CrowdStrike customers."

A Microsoft spokesperson told The U.S. Sun. “Earlier today, a CrowdStrike update was responsible for bringing down a number of IT systems globally.

"We are actively supporting customers to assist in their recovery.”