Microsoft wants to make future CrowdStrike outages impossible, and it could mean big changes for security software

Surface Laptop 5
Microsoft suggested several ways to protect Windows 11 PCs without giving kernel access to apps such as CrowdStrike. (Image credit: Future)

What you need to know

  • A massive outage caused by a CrowdStrike bug caused 8.5 million PCs to crash and affeted countless people and businesses.
  • The outage was caused by a CrowdStrike update with a bug that was able to affect PCs due to the app having kernel access to Windows 11.
  • In response to the outage, Microsoft appears to be interested in moving away from security software having Windows 11 kernel access.

The recent CrowdStrike outage caused 8.5 million PCs to crash, affected millions of people, and potentially cost businesses billions of dollars. Referred to by many as the "digital pandemic," the outage has drawn response from CrowdStrike, Microsoft, and security experts. The outage was caused by a CrowdStrike bug, and Microsoft is looking into options that could make similar outages impossible in the future.

"The recent CrowdStrike incident underscores the need for mission-critical resiliency within every organization, and our unique ability to support the change required," said Microsoft's John Cable, vice president of program management for Windows servicing and delivery.

CrowdStrike, and some other pieces of security software, run at a kernel level on Windows 11. That setup gives security tools like CrowdStrike access to a PC's memory and parts of the operating system usually closed off to other applications. This is possible at the moment because kernel access allows a piece of software to monitor a system, but it also means that a faulty driver in something like CrowdStrike can cause a PC to crash.

Cable explained that the recent CrowdStrike outage "shows clearly that Windows must prioritize change and innovation in the area of end-to-end resilience." While Cable did not specifically say that Microsoft will shift security software away from having kernel access, the examples he shared are for security methods that do not require accessing the Windows kernel.

VBS enclaves, which Cable highlighted, does not require kernel access. Microsoft Azure Attestation service is another security measure that could protect systems without putting a PC at the same risks presented by an app having kernel access.

"These examples use modern Zero Trust approaches and show what can be done to encourage development practices that do not rely on kernel access," said Cable. "We will continue to develop these capabilities, harden our platform, and do even more to improve the resiliency of the Windows ecosystem, working openly and collaboratively with the broad security community."

If Microsoft moved away from allowing security apps to have kernel access, a buggy update from CrowdStrike or another app would not be able to cause PCs to crash. Other types of attacks would still be possible, of course, as cybersecurity is incredibly complex, but the specific type of issue that caused the CrowdStrike outage would not be possible.

What was the CrowdStrike outage?

The CrowdStrike outage was an incident that saw 8.5 million PCs crash and show the "Blue Screen of Death" (BSoD). The situation caused planes to be grounded, banks to be affected, and emergency services to go down. It was one of the largest outages of its kind to ever occur, and it will likely have serious ramifications across several sectors.

The outage was caused by a buggy driver update sent out by CrowdStrike, but the issue only affected PCs running Windows. Because of that fact, some called the incidnet the "Microsoft outage." While Microsoft was not directly at fault for the issue, systems running the tech giant's operating system were the ones to crash, so Microsoft has had to look at solutions.

Microsoft released a CrowdStrike recovery tool, which has since been updated to support multiple recovery methods.

Several memes were made about the CrowdStrike outage, and there were people who enjoyed a surprise day off, but the situation was quite serious. There's a good chance that billions of people were affected by the outage, at least indirectly. Businesses have also lost money due to services being down.

Sean Endicott
News Writer and apps editor

Sean Endicott is a tech journalist at Windows Central, specializing in Windows, Microsoft software, AI, and PCs. He's covered major launches, from Windows 10 and 11 to the rise of AI tools like ChatGPT. Sean's journey began with the Lumia 740, leading to strong ties with app developers. Outside writing, he coaches American football, utilizing Microsoft services to manage his team. He studied broadcast journalism at Nottingham Trent University and is active on X @SeanEndicott_ and Threads @sean_endicott_. 

Read more
Binary code displayed on a laptop screen and Guy Fawkes mask are seen in this illustration photo.
Microsoft blocks critical Secure Boot loophole after over 7 months — fortifying Windows 11 against sophisticated firmware attacks camouflaged as verified UEFI apps
The Windows 11 Start menu apps list.
You'll care about these 7 big changes coming to Windows 11 in 2025 — here's what to expect
Apple Store in Bangkok, Thailand
Microsoft flags macOS bug — remotely bypassing Apple's sophisticated System Integrity Protection (SIP) security solution and allowing unauthorized third-party rootkit installs
Windows Update
Unable to install security updates after freshly installing Windows 11? You're not alone
Windows Copilot key
Is this Windows 11 'bug' the feature we've been waiting for? Say goodbye to Copilot (for now)
ASUS ExpertBook CX54 Chromebook
Months before millions of PCs will get stuck on Windows 10, Google makes its case for running ChromeOS to use Microsoft 365
Latest in Windows 11
Windows Update
Microsoft begins testing next phase of Windows 11 — Dev Channel to flight new platform changes
Windows 11 Search
Copilot+ PCs' first must-have feature is just around the corner
Themes section of the Microsoft Store on Windows 11
Two of my least favorite things about the Microsoft Store are about to get fixed
Surface Laptop 7
Amazon warns Surface Laptop 7 shoppers as Mojang unveils massive visual update to Minecraft and Microsoft leaks a potential new feature for the Xbox app on Windows 11
Windows 11 Update Settings
Your PC might have been blocked from updating Windows 11 because of this game
Windows 11 Official
Microsoft's next wave of Windows 11 feature updates includes gaming, emoji, and lock screen changes
Latest in News
Surface Pro 11
Microsoft’s smaller Surface Pro appears in certification database ahead of rumored launch this spring
Artificial intelligence mobile apps for DeepSeek, ChatGPT and Google Gemini arranged.
Google says its latest reasoning model is its "most intelligent" — but Microsoft's CEO claims Google already fumbled its AI opportunity
ChatGPT and Microsoft Logo
ChatGPT’s new image-generation tool is impressive; it can finally create a glass of wine filled to the brim — but it struggles with blank white images and appears to discriminate against 'sexy women'
Microsoft Edge Sidebar
My favorite Microsoft Edge feature just got an AI upgrade — is this the best way to use Copilot on Windows 11?
Professor Sir Roger Penrose, physicist, mathematician and cosmologist
Nobel laureate claims "AI will not be conscious" and shouldn't be considered intelligent — Until it develops its own ideas
UGreen x Genshin Impact charging accessories: image shows magnetic wireless charger, power bank, GaN charger and USB-C cable
UGreen drops a stunning Genshin Impact collection of charging accessories AND it's all on sale