The CrowdStrike incident, Quick Heal Technologies is urging entities managing critical infrastructure to reconsider their cybersecurity strategies. Quick Heal’s CEO discussed how the incident has prompted a reevaluation of the reliance on single cybersecurity solutions.
The incident, which involved a compromise of core software components, has highlighted the need for a diversified approach to cybersecurity. The CEO noted, “The CrowdStrike lapse was primarily an error, but it also serves as a stark reminder of the potential for intentional cyberattacks. This has led organisations to question the wisdom of placing all their cybersecurity needs in a single basket.” The core issue with the CrowdStrike incident was the compromise of the kernel, the central component of an operating system. The kernel controls all critical operations, and a breach at this level can lead to a complete system failure. In contrast, vulnerabilities confined to user space, where applications operate, tend to affect only specific applications without compromising the entire operating system.
In response to these challenges, companies like Microsoft have moved to restrict third-party access to the kernel, aiming to bolster security and mitigate risks. The CEO emphasised that long-term solutions to cybersecurity threats require continuous adaptation and learning from past incidents. “These breaches underscore the need for stringent accountability measures for third-party cybersecurity providers,” he remarked.Reflecting on previous significant cybersecurity incidents, such as the SolarWinds malware attack that compromised numerous organisations and government entities in the US, the CEO highlighted the increased focus on compliance and rigorous security measures that followed. The SolarWinds attack prompted the development of more robust compliance frameworks to prevent similar occurrences.
Quick Heal, alongside other cybersecurity firms, is actively analysing the CrowdStrike incident to enhance its own security protocols and prevent future breaches. The CEO’s remarks underscore the shifting paradigm in cybersecurity, where diversification and stringent security practices are becoming crucial for safeguarding critical infrastructure against evolving threats.
