London24NEWS

Tech blunder boss loses £250MILLION as CrowdStrike sheds £9bn

  • George Kurtz co-founded CrowdStrike, which pushed out a faulty update today
  • The error crippled businesses across the globe, affecting airports and the NHS
  • Kurtz is ‘deeply sorry’ for the gaffe, which wiped £9bn from CrowdStrike’s value

The man in charge of the company behind a worldwide IT meltdown today lost nearly £250million of his personal fortune – as his firm admitted responsibility for the outage that halted GP appointments and brought British airports to a standstill.

George Kurtz is the cofounder and CEO of CrowdStrike, the Texas-based firm powering cybersecurity for some of the world’s leading companies and global financial institutions.

But the company has issued a grovelling apology after a faulty update pushed out to Windows customers took their systems down in a ‘digital pandemic’ – crippling airlines, airports, broadcasters, the NHS and investment platforms.

The grievous error wiped £9billion from CrowdStrike’s value and $320million (£247m) from Mr Kurtz’s personal wealth; he owns a five per cent stake in the firm and the dip represents a loss of a tenth of his $3.4billion net worth.

Mr Kurtz, was initially criticised for his ‘corporate-speak’ response to the incident, but later used a TV interview to say he was ‘deeply sorry’ – before warning it would take ‘some time’ for systems to be fully restored. 

CrowdStrike has grown rich protecting top brands for Internet breaches, and the irony that it is now responsible for an international crisis wasn’t lost on Elon Musk, who tweeted: ‘The antivirus was the virus.’ 

The issue was caused by a ‘buggy’ security update to Falcon, an antivirus product sold by the firm that protects Microsoft Windows devices from cyberattacks.  

George Kurtz is the CEO of CrowdStrike, which protects some of the world's biggest brands from Internet viruses

George Kurtz is the CEO of CrowdStrike, which protects some of the world’s biggest brands from Internet viruses 

George Kurtz told NBC's Today programme he was 'deeply sorry' for the issues caused by a CrowdStrike update that crippled IT systems across the world

George Kurtz told NBC’s Today programme he was ‘deeply sorry’ for the issues caused by a CrowdStrike update that crippled IT systems across the world

The error crippled systems running Microsoft Windows - which CrowdStrike's Falcon software requires deep access to in order to detect cyberattacks

The error crippled systems running Microsoft Windows – which CrowdStrike’s Falcon software requires deep access to in order to detect cyberattacks

Passengers sit at Edinburgh Airport, where bosses say 'things are returning to normal' following widespread disruption earlier today

Passengers sit at Edinburgh Airport, where bosses say ‘things are returning to normal’ following widespread disruption earlier today

The company is one of the sponsors of the F1 Mercedes race team, which was left without computers for a short time ahead of practice in Hungary today

The company is one of the sponsors of the F1 Mercedes race team, which was left without computers for a short time ahead of practice in Hungary today

Mr Kurtz was initially criticised for his 'corporate-speak' response to the incident (above)

Mr Kurtz was initially criticised for his ‘corporate-speak’ response to the incident (above)

Huge queues at Gatwick Airport after a massive Microsoft outage, caused by a CrowdStrike update, affected services

Huge queues at Gatwick Airport after a massive Microsoft outage, caused by a CrowdStrike update, affected services  

The US-based cybersecurity giant was founded in 2011 by Kurtz, Dmitri Alperovitch (pictured) and Gregg Marston

The US-based cybersecurity giant was founded in 2011 by Kurtz, Dmitri Alperovitch (pictured) and Gregg Marston

Speaking to NBC’s Today Show, Mr Kurtz, who is married to Annamaria Kurtz with whom he shares a son, Alexander, said there had been a ‘negative interaction’ between the update and Microsoft’s operating system 

He added ‘it could be some time for some systems’ to return to normal as they would not ‘just automatically recover’. Microsoft suggested to some customers to reboot their computers up to 15 times to resolve the error, 404 Media reported.

It represents a sorry chapter in CrowdStrike’s otherwise highly successful story – as it has collected an enviable list of customers in its short 13 year history who could now be rethinking their cybersecurity provider.

‘This is clearly a major black eye for CrowdStrike and the stock will be under pressure,’ said Dan Ives, analyst at Wedbush Securities.

Kurtz co-founded the firm in 2011 with Dmitri Alperovitch and Gregg Marston, who retired in 2015 and was replaced as Chief Financial Officer by Burt Podbere.

He made his name early on by co-writing one of the bestselling books on cybersecurity, Hacking Exposed, with Stuart McClure and Joel Scambray.

He then founding his own tech firm, Firmstone, which was later acquired by antivirus company McAfee, where he then served as chief technology officer.

Alongside Alperovitch and Marston, with whom he had worked in his old jobs, Kurtz then started Crowdstrike, quickly collecting high-profile customers that it shows off on its website.

It is perhaps best known for the key role it played in the investigation into the hacking of the US Democratic party during the 2016 Presidential election which found Russian intelligence services had been involved. 

It was first to publicly raise concerns about Russia’s interference in the 2016 election and this assessment was later confirmed by US intelligence agencies.

A number of former FBI cybersecurity agents sit on CrowdStrike’s executive team including Shawn Henry, Chief Security Officer who joined in 2012 after retiring from the FBI senior executive service.

But today’s issue was tied to Falcon – CrowdStrike’s leading product that works to detect cyberattacks.

As a cybersecurity product, CrowdStrike’s Falcon platform is designed to run silently, eliminating viruses and attempted hacks without causing a fuss.

But a faulty update pushed to the Falcon product at a Windows system level turned CrowdStrike into a household name for the wrong reasons today.

NHS workers affected by the outage have taken to TikTok to air their grievances
The NHS-commissioned EMIS system used by GP surgeries and some parts of the health service was taken out by the CrowdStrike fault

NHS workers affected by the outage have taken to TikTok to air their grievances (above). The NHS-commissioned EMIS system used by GP surgeries and some parts of the health service was taken out by the CrowdStrike fault 

A warning message on the NHS app displayed on a phone as widespread IT outages are affecting businesses and institutions around the globe

A warning message on the NHS app displayed on a phone as widespread IT outages are affecting businesses and institutions around the globe

Katie Turner, 52, and her daughter Poppy Clements, who was due to take her first solo flight to Rome from Gatwick Airport

Katie Turner, 52, and her daughter Poppy Clements, who was due to take her first solo flight to Rome from Gatwick Airport

American traveller Stephanie Thompson is set to fly from Edinburgh Airport with her family after spending over £5,000 on new flights, because her Heathrow journey back to Texas was cancelled

American traveller Stephanie Thompson is set to fly from Edinburgh Airport with her family after spending over £5,000 on new flights, because her Heathrow journey back to Texas was cancelled 

A Mercedes team member, whose shirt bears the logo of team sponsor Crowdstrike, looks on as Windows error screens are seen on their pitwall prior to practice ahead of the F1 Grand Prix of Hungary

A Mercedes team member, whose shirt bears the logo of team sponsor Crowdstrike, looks on as Windows error screens are seen on their pitwall prior to practice ahead of the F1 Grand Prix of Hungary

Broadcasters, airports, airlines, train companies, restaurants, financial platforms and football clubs were unable to operate because of the faulty update.

The Cobra system that deals with matters of national emergency or major disruption has been fired up to manage the UK Government’s response, Chancellor of the Duchy of Lancaster Pat McFadden said this morning.

Ministers are in touch with their sectors to tackle the fallout from the IT failures, with Transport Secretary Louise Haigh saying she is working ‘at pace with industry’ after trains and flights ground to a halt.

What has the Microsoft outage affected? 

The Microsoft has been causing massive disruption both in the UK and around the world.

Here are some of the companies and services that have been affected globally – 

  • Airports and flights
  • Train services
  • Hospitals
  • GP surgeries
  • Banks
  • Cafes, restaurants and shops 
  • Payment apps 
  • Taxis  
  • Betting websites 
  • Payroll systems  
  • Football clubs
  • Stock exchanges
  • Supermarkets
  • TV channels
  • Water companies

Advertisement

Mr McFadden, who is in charge of the Whitehall machine, said: ‘Many people are being affected by today’s IT outages impacting services across the country and globally.

‘Ministers are working with their sectors and respective industries on the issue. I am in close contact with teams co-ordinating our response through the COBR response system.’

GPs have been hit, with surgeries in Cumbria, Cheshire, Yorkshire and the West Midlands taking to social media to say their systems had been affected. Two thirds of GP practices in Northern Ireland were affected.

The issue has hit the EMIS system, which allows doctors to book appointments, view patient notes, order prescriptions and make referrals.

Speaking to MailOnline, a practice manager of a GP practice in Berkshire said: ‘We are completely dead in the water. 

‘We can’t see any patients are systems are down. It’s not clinically safe to treat patients because we can’t see their notes.’

Airlines including KLM, American Airlines, Delta, United and Ryanair halted flights while Gatwick and Stansted airports cancelled up to 90 percent of their flights. 

Disruption also affected Heathrow and Edinburgh airports; Edinburgh bosses say ‘things are returning to normal’ but have advised passengers to check with their airlines on their flights.

Heathrow said: ‘Flights continue to be operational and passengers are advised to check with their airlines for the latest flight information.’ 

Katie Turner, 52, was waiting at Gatwick with her daughter Poppy Clements, who turned 18 yesterday and was due to take her first flight alone to see a friend in Rome this morning.

Katie said: ‘We’ve moved about 20-feet forward in four hours and that’s only because more and more people have joined the queue, so we’ve all had to move up slightly. This is my daughter’s first solo flight and I’m waiting with her.’

Poppy, who lives in Crystal Palace, South London, added: ‘I really hope I get to fly out today. I’ve called my friend in Rome to warn her….and she said: ‘Be prepared to be there all day!”

Rafa de Miguel arrived four hours before his Ryanair flight to Madrid at Stansted when he ‘sensed the mood change’ as passengers found out about the Microsoft outage.

The 56-year-old says staff were forced to write out boarding passes and luggage tags in pen because the IT system was down.

Train passengers can expect disruption today due to the outage (pictured is a Great Northern train reading 'not in service')

Train passengers can expect disruption today due to the outage (pictured is a Great Northern train reading ‘not in service’) 

Sky News went off air following the technical issue with the Microsoft operating system

Sky News went off air following the technical issue with the Microsoft operating system

The channel is now back on air, but without some of its usual on-screen graphics. Travel expert Simon Calder told the channel today is the busiest day for British airports since Covid

The channel is now back on air, but without some of its usual on-screen graphics. Travel expert Simon Calder told the channel today is the busiest day for British airports since Covid

Windows is the most used operating system in the world, meaning the outage is affecting almost every part of the global economy - with restaurants and cafes, including the bakery chain Gail's, unable to take card payments

Windows is the most used operating system in the world, meaning the outage is affecting almost every part of the global economy – with restaurants and cafes, including the bakery chain Gail’s, unable to take card payments

A checkout worker in a Little Waitrose at Kings Cross Station told customers: 'It is cash only at the moment. The card machines are not working'

A checkout worker in a Little Waitrose at Kings Cross Station told customers: ‘It is cash only at the moment. The card machines are not working’

He said: ‘It’s a perfect example of us being too reliant on the internet. It goes down and the world goes crazy.’

Texas resident Stephanie Thompson’s flight from Edinburgh to Heathrow to Dallas was cancelled – so she has paid £5,300 for alternate flights. 

She told the PA news agency: ‘I was on hold with American (Airlines) for about an hour and 10 minutes before I finally hung up.

What is CrowdStrike, why is it experiencing issues, and could a cyberattack be responsible?

By Kevin Airs 

The rogue app that brought down computers across the world is ironically aimed at protecting PCs from hackers.

Crowdstrike is a security service designed to stop internet breaches for the globe’s biggest companies, but is now responsible for perhaps the biggest IT outage we have ever seen. 

Computer analysts believe a badly-written bit of code in the update triggered the catastrophe and wrecked computer networks worldwide. 

Crowdstrike has confirmed a faulty update was responsible for sparking the chaos. 

It said in a statement this morning: ‘Crowdstrike is actively working with customers impacted by a defect found in a single content update for Windows hosts.

‘Mac and Linux hosts are not impacted. This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed.

‘We refer customers to the support portal for the latest updates and will continue to provide complete and continuous updates on our website.

‘We further recommend organisations ensure they’re communicating with Crowdstrike representatives through official channels. Our team is fully mobilised to ensure the security and stability of Crowdstrike customers.’

Dr Mark Gregory, associate professor at RMIT University’s School of Engineering, said he believed an update to one of CrowdStrike’s software products, called Falcon, is ‘bricking’ computers running Windows, making them inoperable. 

Cyber expert Troy Hunt told Seven News the catastrophic crisis was not affecting all Microsoft Windows computers, but many of them.

Advertisement

‘We just paid 6,800 dollars for a one-way trip home, hopefully leaving tonight. I didn’t know what else to do. I just wanted something to get us home.’

The London Stock Exchange’s Workspace news and data platform suffered outages, as did Barclays’ Smart Investor platform, while Manchester United had to postpone a scheduled release of tickets.

Hospitality businesses such as Wetherspoons, McDonalds and Starbucks suffered problems with their payment systems due to the outages. 

It came as research by Lopay, a card payments system, found that two-thirds of Brits had abandoned paying by cash in favour of using their cards and phones – leaving many high and dry today as their favourite local businesses grappled with IT issues.

Lopay founder and CEO Richard Carter said that, despite the issues, many Brits would likely continue wanting to pay by digital means.

‘Cash is not dead and probably never will be, but it is very much on its last legs and gasping for breath,’ he said.

‘But it does mean that small shops with minimum card limits, and small businesses who don’t take cards are almost certainly losing custom now, and risk losing more in the future.’

Falcon requires deep-level access to a computer’s operating system to scan for those threats. 

Computer analysts believe a badly-written bit of code in the update sent out overnight crashed servers, desktop PCs, laptops and corporate computer terminals by forcing them into a death spiral of endless reboots – making it impossible for them to operate normally. 

MacOS and other operating systems have not been affected.  

Kurtz admitted that CrowdStrike was at fault earlier today, telling NBC’s Today Show: ‘We’re deeply sorry…the global issues were caused by a single faulty content update.

‘That update had a software bug in it and caused an issue with the Microsoft operating system…we identified this very quickly and remediated the issue.’

IT bosses today described the issue as a ‘digital pandemic affecting millions’, with others fearing the disruption will last long into the weekend.

Kurtz is an avid car collector and racing driver, having competed in the GT World Challenge America – a North American sports car racing series.

So it is of little surprise that CrowdStrike boasts a top motorsports team as one of its clients – the Mercedes-AMG Formula 1 team, for which the company is a major sponsor. 

But as a result, Mercedes engineers were left staring at pit wall screens at the Hungaroring circuit in Hungary today as they tried to fix the IT bug.

Engineering director Andrew Shovlin said the impact had been minimal ahead of today’s free practice (FP) runs, telling Motorsport.com: ‘The impact in FP1 was minimal, if not nil. So, it created a bit of work, but we’re back where we need to be now.’

Chris Dimitriadis, chief global strategy officer at ISACA, a professional IT association, described the incident as a ‘digital pandemic’.

He said: ‘When one service provider in the digital supply chain is affected, the whole chain can break, causing large-scale outages. 

‘This incident is a clear example of what could be termed a digital pandemic, a single point of failure impacting millions of lives globally.’

The outage was due to a 'buggy' security update to Falcon, a type of antivirus software that protects Microsoft Windows devices from cyberattacks

The outage was due to a ‘buggy’ security update to Falcon, a type of antivirus software that protects Microsoft Windows devices from cyberattacks

The technical fault, which caused Windows software to suddenly shut down, grounded flights and knocked hospitals, GP surgeries, train services, banks, stock exchanges and TV channels offline

The technical fault, which caused Windows software to suddenly shut down, grounded flights and knocked hospitals, GP surgeries, train services, banks, stock exchanges and TV channels offline 

Passengers in the South Terminal at Gatwick Airport after the outage led to hundreds of flights being cancelled around the world

Passengers in the South Terminal at Gatwick Airport after the outage led to hundreds of flights being cancelled around the world 

Toby Murray, associate professor in the School of Computing and Information Systems at The University of Melbourne, Australia, earlier said a ‘buggy’ update to Falcon was likely to blame.

‘CrowdStrike is a global cyber security and threat intelligence company. Falcon is what is known as an Endpoint Detection and Response (EDR) platform, which monitors the computers that it is installed on to detect intrusions – hacks – and respond to them.

‘That means that Falcon is a pretty privileged piece of software in that it is able to influence how the computers it is installed on behave.

‘For example, if it detects that a computer is infected with malware that is causing the computer to communicate with an attacker, then Falcon could conceivably block that communication from occurring. 

‘If Falcon is suffering a malfunction then it could be causing a widespread outage for two reasons – one: Falcon is widely deployed on many computers, and two: because of Falcon’s privileged nature.

‘Falcon is a bit like anti-virus software: it is regularly updated with information about the latest online threats (so it can better detect them). We have certainly seen anti-virus updates in the past causing problems. It is possible that today’s outage may have been caused by a buggy update to Falcon.’

CrowdStrike reported more than $3billion (£2.32billion) of revenue last year but following today’s crisis its stock price fell 20%.

According to Companies House, CrowdStrike’s UK HQ in an upmarket street in London’s Mayfair is shared with another tech company named Citco. It recorded a £13million loss in 2023, the most recent accounts available.

‘The computing crisis we’re currently witnessing, due to a technical issue in Crowdstrike’s agent, is unprecedented in a scale we haven’t seen in years,’ said Amiram Shachar, founder of rival security firm, Upwind.

‘It has already had a massive impact on critical infrastructure worldwide, including hospitals, banks, airports, and communication services.

‘As the agent causes organisations’ Windows systems to shut down, millions of companies are affected, since most organisations deploy updates automatically.

‘Given that the Crowdstrike agent is installed on millions of devices, ranging from servers to PCs and IoT devices, the damage is unprecedented.’