Australia on alert: Cyber scams emerge following global outage

Australia on alert: Cyber scams emerge following global outage is profiled by BTW Media because published evidence links it to internet infrastructure, governance, operational dependencies, or market visibility.

• The Australian Signals Directorate has issued an alert on the appearance of malicious websites and code after a global digital outage.
• The digital outage has had a wide-reaching impact on various sectors, including banking and aviation. CrowdStrike has released a fix currently, but it could take days.

OUR TAKE
The American technology giant Microsoft broke out a major service disruption on 19 July, many users around the world reported that enterprise computers equipped with the Windows system appeared ‘blue screen’ failure, unable to start normally. Thousands of flights in many countries were grounded, banks were shut down, and media outlets went off the air. …… From America, Europe to Asia, the problem affected various industries, including transport, finance, media, healthcare, etc. The BBC pointed out that Australia seemed to be particularly badly affected. Alarmed Australian government departments came out in response.
–Elodie Qian, BTW reporter

What happened

Australia’s cyber watchdog, the Australian Signals Directorate (ASD), has issued a public alert regarding the appearance of malicious websites and unofficial code following a significant global digital outage. The outage hits media, retailers, banks and airlines.

The incident, which occurred on Friday, has been linked to a botched software update from CrowdStrike, a major cybersecurity provider with close to 30,000 subscribers globally.

The ASD has emphasised the importance of sourcing technical information and updates only from official CrowdStrike sources, in an effort to prevent further cyber threats. The agency’s cybersecurity centre is actively monitoring the situation and providing guidance to the public.

Minister for Cyber Security, Clare O’Neil, said on social media platform X on Saturday that Australians should “be on the lookout for possible scams and phishing attempts”.

The digital outage has had a wide-reaching impact on various sectors, including banking and aviation. The Commonwealth Bank of Australia reported issues with PayID payments and National airline Qantas and Sydney experienced flight delays.

Australian Prime Minister, Anthony Albanese, has confirmed that the country’s critical infrastructure, government services, and emergency systems remain unaffected by the outage. As the investigation into the incident continues, CrowdStrike’s role in the digital disruption is under scrutiny, with the company’s market cap previously reaching approximately $83 billion.

Also read: Chaotic scenes as global IT outage hits airports, banks and media

Also read: Cybersecurity threats: The shadowy realities of digital espionage

Why it’s important

The ASD’s proactive approach in addressing the issue highlights the need for vigilance in the face of evolving cyber threats. The agency’s advice serves as a reminder of the importance of relying on trusted sources for information and updates, especially during times of widespread digital disruption.

Currently, CrowdStrike has released a fix. But the BBC said the procedure would have to be applied individually to each affected device and each machine would need to be manually rebooted in Safe Mode, according to people familiar with the matter, which would create a huge workload for IT departments everywhere. Alan Woodward, a professor of cybersecurity at the University of Surrey in the U.K., said the fix could take days.

Following the incident, Microsoft’s US stock extended its pre-market losses to almost 2% and CrowdStrike fell more than 20% pre-market.

Why is it that just one content update to third-party software has crippled airline systems, payment systems, healthcare systems and more worldwide? Why does a single software bug have such a profound and immediate impact? George Kurtz, the founder and CEO of CrowdStrike was also asked this question during this latest interview with NBC.

In response, Kurtz told the NBC host that cybersecurity is very complex and that it’s certainly a difficult task to stay ahead of adversaries who launch cyberattacks and therefore requires constant updating. As for where the adverse reaction occurred, he would have to go back and see what happened.