Microsoft initially estimated that 8.5 million Windows devices worldwide were affected by the major CrowdStrike bug. In a new analysis, the company has adjusted this estimate: the actual number of victims is significantly higher.

On July 19, a broken Crowdstrike update caused a stir around the world. The update combined PCs and servers into one Boot loop or the dreaded Bluescreen of death (BSOD). Large and small organizations around the world were unable or barely able to carry out their activities.

More than 8.5 million

The incident also caused problems for Windows owner Microsoft, as the error specifically affected CrowdStrike customers who use Windows. Microsoft initially took stock of the damage in a blog. Approximately 8.5 million Windows devices had felt the effects of the faulty Crowdstrike update, it was initially said. Microsoft emphasized that this was less than one percent of all Windows devices worldwide.

Now Redmond itself admits in a new analysis that this number is an absolute minimum estimate and that the actual number of victims is much higher. The 8.5 million was based on the number of customers who submitted a crash report. However, not every affected device shares a crash report with Microsoft. The error has therefore paralyzed significantly more systems, but Microsoft is not making a new estimate at this time.

Global chaos

No matter how many systems crashed, there were enough to cause total chaos. Retailers and banks were left with broken systems, but the aviation sector in particular was devastated. More than 1,400 flights had to be cancelled worldwide, and at some airports staff had to rely on handwritten boarding passes.

Haste and haste are rarely good

Crowdstrike is, of course, much more than just Microsoft. CEO George Kurtz has already had to apologize extensively for the incident. It is now becoming increasingly clear what exactly went wrong with the security specialist. Crowdstrike released a configuration update for its sensor software on July 18. What is normally a standard procedure led to a logical error that caused system crashes and BSODs.

Jo Vander Schueren of Belgium’s Jarviss is not surprised that this would happen sooner or later. According to his analysis for ITdaily, this could just as easily have happened to another provider. “The pressure on listed companies to bring innovations to market is too great and the speed at which they roll out updates is too high.”

Through a LinkedIn post, Crowdstrike confirms that “a significant number” of the affected devices have now been brought back online. After a weekend that ruined many IT managers, the world can gradually return to normal. However, the solution is not obvious and requires manual work. If your organization continues to experience problems, read our guide or take a look at the recovery portal set up by Crowdstrike. An official recovery tool has also been launched from the Microsoft camp.

What’s next for Crowdstrike?

The incident could have a long history for Crowdstrike. Since the bug, the company’s shares have fallen by almost 20 percent and its reputation has suffered greatly. Crowdstrike is striving for transparent communication and stresses that this is not a hack. Customers can also be assured that the provider’s security tools will continue to do their job.

Vander Schueren believes that Crowdstrike will make it. “Basically, Crowdstrike will have protected itself in its agreements with customers. Otherwise it will mean the end of the company. Now the stock is falling, but I am curious to see how the market will develop in six weeks.”