Note: CISA will update this Alert with more information as it becomes available.
Update 12:00 p.m., EDT, July 24, 2024:
CrowdStrike continues to provide updates to its guidance, including:
- An instructional video to guide users through a self-remediation process.
- An update to their initial remediation that accelerates remediation of impacted systems; CrowdStrike encourages customers to “follow the Tech Alerts for latest updates as they happen.”
- A “Preliminary Incident Review,” which provides answers to why and how the outage occurred and how they will prevent such outages going forward.
CrowdStrike also published a list of domains impersonating the CrowdStrike brand, which threat actors could use to deliver malicious content.