Microsoft has announced its intention to hold a special Windows Security Summit dedicated to the recent global failure of the Windows OS associated with a bug in CrowdStrike’s security software. According to Microsoft, the Sept. 10 event will discuss efforts to strengthen cybersecurity and protect critical infrastructure with partners including CrowdStrike.
Microsoft intends to develop measures to prevent a repeat of recent events – according to reports, at least 8.5 million computers running Windows were affected, and the damage amounted to billions of dollars. Delta Air Lines, whose operations were almost paralyzed, have particularly large claims.
In addition to this and other airlines, the IT systems of medical organizations, railway companies and other critical infrastructure facilities were affected. The damage to Fortune 500 companies alone amounted to about $5.4 billion, not counting smaller businesses that resorted to desperate and unusual measures to restore functionality.
Microsoft will give endpoint security vendors a forum to discuss how to prevent similar incidents in the future. The creation of more secure protection systems will be discussed – the cause of the CrowdStrike software disaster was that a bug was missed during testing of updates. Microsoft blames European bureaucrats for what happened, who at one time forced the company to provide third-party developers with access to the operating system kernel.
According to an anonymous source at Microsoft, meeting participants will likely discuss the possibility of running their applications primarily in user space, which has fewer privileges than the kernel level. Microsoft promised to talk about the decisions and agreements reached after the summit.