Move over Y2K, there’s a new legendary outage in town. A broken software update has crashed Windows devices around the world, bringing airports, TV channels, card payments, and healthcare systems to a standstill.
The bug was found in a software update to CrowdStrike’s Falcon antivirus software, which caused Windows machines to crash to the Blue Screen of Death (BSOD).
The issue does not affect Mac or Linux hosts.
More than 1,300 flights have been cancelled around the world, and on X, Elon Musk referred to it as the “Biggest IT fail ever”.
CrowdStrike have deployed a fix in a new update, but it could take days for companies to get back to fully operational, as installing the safe update requires every impacted machine to be started in Safe Mode to remove the bugged version.
The company lost around $12.5bn in value when the Nasdaq stock exchange opened in New York this morning.
The images of departure boards being written out by hand and countless “CASH ONLY” signs in shop windows highlight the importance of having a robust incident response plan. Bad actors don’t have to be involved for your network to fail. Even organisations with faultless cyber security will have been affected by this incident, and it pays to be prepared.
What is an Incident Response Plan?
An incident response plan is a well-defined, structured approach that organisations use to address and manage the aftermath of a security breach, cyber attack, or outage. The goal of an IR plan is to handle the situation in a way that limits damage, reduces recovery time and costs, and minimises collateral damage such as reputation loss.
A solid incident response plan includes clear responsibilities for all individuals involved, strategies for maintaining business operations during an incident, and measures to isolate affected systems.
Why is an Incident Response Plan Important?
- Minimises Damage and Loss
One of the benefits of an IR plan is that it helps contain and mitigate the damage caused by security incidents. A well-coordinated response can prevent the spread of malware, halt data breaches, and stop the theft of sensitive information, limiting financial losses and operational disruption.
- Ensures Quick Recovery
With a clear IR plan, organisations can quickly identify the extent of an incident and take appropriate actions to recover. This reduces downtime and helps resume normal business operations as swiftly as possible. The quicker the response, the lesser the impact on business continuity.
- Maintains Customer Trust and Reputation
Security breaches can significantly damage an organisation’s reputation, leading to a loss of customer trust. An effective IR plan ensures that incidents are handled transparently and efficiently, demonstrating to customers and stakeholders that the organisation is committed to protecting their data and interests.
To protect your business against future incidents and maintain business continuity, contact OmniCyber Security for expert guidance on developing your cyber security and crisis response. Our team is ready to help you navigate the complexities of cyber security and ensure your organisation is prepared for anything. Contact us today.
