In September, Microsoft announced plans to host a conference for cybersecurity firms to address the aftermath of a faulty CrowdStrike software update that led to widespread disruptions in July. The incident not only caused chaos in internet-connected systems but also had ripple effects across various industries. Airlines faced thousands of flight cancellations, logistics companies experienced delays in package deliveries, and hospitals had to reschedule medical appointments. Delta Air Lines reported a staggering $550 million in losses due to the outage, prompting them to seek damages from CrowdStrike and Microsoft.
The conference, scheduled for September 10 at Microsoft’s campus in Redmond, Washington, aims to facilitate discussions on how the cybersecurity industry can prevent similar incidents in the future. An anonymous Microsoft executive revealed that the agenda includes exploring the transition of applications from kernel mode to user mode in Windows. Currently, security software from companies like CrowdStrike, Check Point, and SentinelOne heavily relies on kernel mode access. While kernel mode provides privileged access for monitoring and preventing malware, it also poses a risk of system-wide crashes if an application fails.
During the conference, participants will also delve into the adoption of emerging technologies such as eBPF, which ensures program compatibility without causing system crashes. Moreover, there will be discussions on leveraging memory-safe programming languages like Rust to enhance cybersecurity measures. Microsoft’s recent donation to the Rust Foundation reflects their commitment to supporting innovations in the cybersecurity sector.
Microsoft, a key player in the cybersecurity landscape with its Defender for Endpoint product, emphasizes equality among cybersecurity firms attending the conference. The executive stressed that Microsoft’s team will participate like any other company and will not receive preferential treatment. Microsoft Corporate Vice President Aidan Marcuss indicated that updates on the outcomes of these discussions will be shared following the event, highlighting the company’s transparency in addressing cybersecurity challenges.
The cybersecurity conference hosted by Microsoft signifies a crucial step towards enhancing cybersecurity measures in the wake of the CrowdStrike software update debacle. By promoting dialogue and collaboration among industry stakeholders, Microsoft aims to pave the way for a more secure digital environment. The focus on transitioning to user mode, exploring new technologies, and supporting innovative initiatives underscores the evolving nature of cybersecurity and the need for continuous adaptation to mitigate future risks.