Is My Data Safe? - Lessons to Learn from the CrowdStrike Outage

Blog Layout

August 16, 2024

A Major IT Outage: What Happened?

On July 19, 2024, a significant IT outage disrupted services worldwide. Banks, healthcare facilities, emergency services, and payment systems faced interruptions, causing widespread business closures and even flight cancellations. This global incident left many travelers stranded and businesses scrambling to restore operations.

What is CrowdStrike?

CrowdStrike is a leading American cybersecurity company specialising in software to monitor and detect cyber threats. Their flagship product, Falcon EDR (Endpoint Detection and Response), acts like a powerful antivirus tool. It detects and mitigates security threats, alerting of potential hackers.

During a recent update, it caused many computers to crash, resulting in the infamous Blue Screen of Death (BSOD) on Windows systems. Given that Microsoft systems constitute about 70% of desktop operating systems worldwide, the effects of this outage were extensive, impacting millions globally. *

Is My Computer Safe?

The good news is that CrowdStrike's products are primarily used by organisations, not individual home users. If you are using regular antivirus and anti-malware programs, you would not have been affected by this outage. However, it raises an important question: what can I do to prepare for future outages?

Lessons Learned for Businesses

1. Review Redundancy and Single Point Failures

Relying on a Single Source: If your organisation depends heavily on one cybersecurity provider, it can be risky when things go wrong.
Diversify Your Vendors: By using multiple service providers, you reduce the impact of any one service experiencing issues.
Redundant Security Measures: Always have backup security solutions ready to deploy during outages.

2. Enhance Incident Response

Effective Plans: A well-prepared incident response plan can greatly reduce the impact of outages. When was the last time you tested yours?
Scenario Planning: Ensure your incident response plans cover various disruption scenarios.
Communication Plans: Clear communication is crucial during outages. What will your messaging be?

3. Employee Training

Build a Culture of Resilience: The Australian Cybersecurity Center (ACSC) reported that during the outage, malicious websites and unofficial code attempted to exploit the situation; training staff to recognise these risks is essential.**
Handle Disruptions: Well-trained employees can better manage disruptions and outages.
Regular Drills: Conduct regular training sessions and simulated drills to ensure your team is prepared to handle real incidents efficiently. This includes recognising phishing attempts and social engineering attacks that often follow major disruptions.

4. Organisational Resilience

The recent CrowdStrike outage was not caused by a cyber-attack, but it serves as a valuable learning opportunity. You can use this experience to strengthen your business culture of resilience and improve your preparedness for future incidents. The ability to maintain and quickly recover normal operations during a disaster is crucial.

Lessons Learned for Individuals

As a reminder to remain vigilant, and as noted by the ACSC, unofficial websites and sources of help were released to take advantage of the CrowdStrike incident**, here are some essential tips to keep in mind:

1. Exercise Caution with Unsolicited Communications:

Be extra cautious if your primary security tool is down. Always be skeptical of unsolicited messages that ask for personal information or urge you to act quickly. Avoid clicking on suspicious links and directly verify any requests for personal information or payments.

2. Have a recovery plan and backup your data:

Ensure your important files are backed up so that you are not reliant on a single source. In the event an outage occurs prepare a recovery plan.

3. Verify the Source:

During worldly events, if you receive a suspicious call or message, verify the caller’s identity. Be aware of tools like voice cloning and number spoofing that make calls appear legitimate. If in doubt, hang up and contact the entity directly.

4. Secure Your Information:

Use strong, unique passwords for all your accounts and consider a password manager. Enable multi-factor authentication to increase security.

5. Monitor and report Suspicious Activity:

Regularly check bank and other sensitive accounts for unauthorised transactions and alerts. Report suspicious activity to relevant organisations immediately. If you suspect a cyber-attack, report it to https://www.cyber.gov.au/

Congratulations to Bishop George Kolodziej, the new Bishop of Bunbury

March 24, 2025

Catholic Development Fund (CDF) congratulates Bishop George Kolodziej SDS on his ordination and installation as the fifth Bishop of Bunbury. The ceremony took place on March 19, 2025, the Solemnity of Saint Joseph, at St Patrick's Cathedral in Bunbury. Archbishop Timothy Costelloe SDB, President of the Australian Catholic Bishops Conference (ACBC), presided over the ceremony as principal consecrator, and was joined by more than 19 bishops from across Australia, including CDF’s Board Member Most Rev. Anthony J. Ireland, Auxiliary Bishop of Melbourne. Tim O’Leary, CDF Deputy Chair of the Board, and Matthew Cassin, CDF Chief Executive Officer, were also in attendance amongst distinguished guests. Apostolic Nuncio Charles Balvo presented the Papal Bull during the ceremony, which brought together the entire Bunbury Catholic community—clergy, seminarians, acolytes, altar servers, musicians, choir members, Salvatorian priests from across Australia, and representatives from Catholic Education Western Australia Ltd and Catholic Religious Australia. In his poignant homily, Archbishop Costelloe highlighted the significance of Bishop George's middle name being Joseph, noting, "Perhaps today, as we celebrate the Solemnity of Saint Joseph, we might look to him as a model of this tender and compassionate presence to others, a model especially, though not only, for our soon-to-be Bishop George."

Transforming STEAM at St Columba's College's new Foxford Innovation Centre

By Michelle Ross-FitzGerald • March 24, 2025

Last month, St Columba’s College celebrated the blessing and official opening of its brand new Foxford Innovation Centre. The state-of-the-art facility is the result of a 20-year vision, designed to transform educational opportunities for students through a focus on STEAM (Science, Technology, Engineering, Arts, and Mathematics) education. Supported by a $13 million loan from CDF, the Centre blends modern innovation with the heritage architecture of the College campus; it features cutting-edge facilities, including food technology kitchens, maker spaces, arts and science classrooms, specialist labs, a canteen, and a competition-grade sports court. The Centre is named after the Foxford Woollen Mills in Ireland, honouring the legacy of Mother Agnes Morrogh-Bernard, a Sister of Charity who founded the mills in 1892. Her vision and leadership transformed a struggling community, embodying the values of innovation, inclusivity, and collaboration.

Catholic Connect Workshop Bridges Leadership and Hope

March 12, 2025

Catholic Development Fund (CDF), recently hosted its first Catholic Connect Workshop for 2025 exploring ' Leading with Hope in Uncertain Times.' The event, brought together in partnership with Catholic Social Services Victoria (CSSV) , united Catholic organisation leaders to explore the intersection of leadership, formation, and hope. The workshop's theme aligned perfectly with both International Women's Day and the Jubilee Year theme "Pilgrims of Hope," creating a timely opportunity to reflect on cultivating hope within communities and organisations. The heart of the event featured an impressive panel moderated by Josh Lourensz, Executive Director of CSSV. The distinguished speakers included: Micaela Cronin , the Inaugural Federal Commissioner for Domestic, Family and Sexual Violence, whose career began in social work with organisations like St. Vincent De Paul Society and MacKillop Family Services, Annie Carrett , the Chief of Staff to the Archbishop of Melbourne and first female Chancellor of the Archdiocese of Melbourne, bringing over 35 years of experience within the Catholic Church; and Sr. Joan Healy , a 90-year-old author, activist, and pioneer in family and child support models whose work over five decades continues to influence current practices.

CDPF Limited, a company established by the Australian Catholic Bishops Conference, has indemnified the Catholic Development Fund ABN 15 274 943 760 (the Fund) against any liability arising out of a claim by investors in the Fund. In practice, this means your investment is backed by the assets of the Catholic Archdiocese of Melbourne. The Fund is required by law to make the following disclosure. Investment in the Fund is only intended to attract investors whose primary purpose for making their investment is to support the charitable purposes of the Fund. Investors’ funds will be used to generate a return to the Fund that will be applied to further the charitable works of the Archdiocese of Melbourne and the Dioceses of Sale and Bunbury. The Fund is not prudentially supervised by the Australian Prudential Regulation Authority nor has it been examined or approved by the Australian Securities and Investments Commission (ASIC). An investor in the Fund will not receive the benefit of the financial claims scheme or the depositor protection provisions in the Banking Act 1959 (Cth). The investments that the Fund offers are not subject to the usual protections for investors under the Corporations Act (Cth) or regulation by ASIC. Investors may be unable to get some or all of their money back when the investor expects or at all and investments in the Fund are not comparable to investments with banks, finance companies or fund managers. The Fund’s identification statement may be viewed here or by contacting the Fund. The Fund does not hold an Australian Financial Services Licence.