Florida Tech Professor Highlights Global Technology Outage, Concerns of Future Cybersecurity Attacks
biggest concerns lie in the hospital industry
BREVARD COUNTY • MELBOURNE, FLORIDA – The world came to a standstill after a technology outage reported Thursday grounded airplanes, disconnected hospitals, and shut down banks across the globe.
A faulty software update was to blame, not cybercriminals. Still, Florida Tech assistant professor TJ O’Connor said the outage’s cascading effect points to larger concerns about our society’s reliance on the internet.
The outage, which affected users’ ability to access Microsoft 365 applications, was traced back to a defect found in a software update from cybersecurity company CrowdStrike. CrowdStrike quickly released a statement confirming that the outage was “not a security incident or cyberattack.”
The outage was nonetheless damaging, kicking institutions offline. Issues remained hours later.
“Once those services go down, there’s this massive cascading effect,” O’Connor said. “If bank processing doesn’t work, then aviation doesn’t work. If aviation doesn’t work, shipping doesn’t work.”
Ultimately, O’Connor explained, the biggest concern isn’t the glitch in the system; it’s the number of systems that broke because CrowdStrike wasn’t working.
“I think what we’ll see a lot of people learn from this CrowdStrike incident is…that if they want to take the internet down in the future, all they have to do is hit one target,” O’Connor said. “It makes the threat landscape a lot smaller to attack for an adversary.”
Over the course of several hours, a blue Microsoft error screen taunted companies worldwide. Airlines including Delta, American and Frontier grounded all flights. Several television news outlets, including the United Kingdom’s Sky News, were unable to hold live broadcasts.
Some of the biggest concerns lie in the hospital industry, where planning, evaluation and continuous monitoring are essential, O’Connor noted.
“[Hospitals] are constantly processing so much data, and for them to go out for a couple of hours means that decisions aren’t being made on an automated basis,” O’Connor said. “We’ve kicked over so much of our decision making to automated systems that we can’t let those networks fail.”
According to the United Kingdom’s National Health Service (NHS), the outage disrupted its appointment and patient record system. Mass General Brigham in Boston, Massachusetts was also one of several U.S. hospitals that cancelled non-urgent surgeries, procedures, and medical visits because of the disruption.
911 outages were also reported in several states, including Phoenix, Arizona, whose computerized dispatch center was affected, the police department posted on social media. In Portland, Oregon, Mayor Ted Wheeler issued a citywide state of emergency due to the outage’s impact on city servers, computers and emergency communications.
Although CrowdStrike confirmed the incident was not malicious, O’Connor said it raises questions about overall reliance on the internet to make decisions, as well as ineffectiveness in securing it.
“We continually have these wake-up moments where something happens, it’s large scale, it’s a news blip, and then we forget about it… but our adversaries don’t,” O’Connor said. “Unfortunately, the attack infrastructure and the ability to attack is getting easier and easier.”
O’Connor also expects future network attacks to get worse, calling the unstable global environment a “national-level issue to address.”
While large-scale attacks and outages are mostly out the individuals’ control, O’Connor said, people can take action to protect themselves from personal cybersecurity attacks by using multi-factor authentication as much as possible.
CLICK HERE FOR BREVARD COUNTY NEWS
