Since news broke overnight that an incident at the CrowdStrike cybersecurity firm caused IT outages affecting multiple industries across the globe, ICBA has been closely monitoring the situation in coordination with financial services partners and officials.
To help community banks answer customer inquiries, ICBA offers a customizable template for outbound messages to customers on the incident and its potential impact on the availability of banking services.
While many questions remain, here’s what we know:
CrowdStrike said it is actively working with customers affected by a single content update for Windows hosts, and it is providing updates on its blog.
CrowdStrike said it has not experienced a security incident or cyberattack, and Mac and Linux hosts are not affected.
Microsoft said it has completed mitigation actions and previously affected Microsoft 365 apps and services have recovered.
The incident has affected some community banks, with some reporting that downed systems are in the process of being restored successfully.
The Financial Services Sector Coordinating Council and the Financial Services Information Sharing and Analysis Center report that the incident is not significantly affecting the financial sector’s ability to provide finance services to customers.
ICBA remains engaged with federal officials from the Treasury Department and the banking regulators as well as industry groups such as the FSSCC and FS-ISAC.
We will continue working to convey community bank concerns with the incident to federal officials, gather additional details and assess the impact on the industry, and keep community bankers apprised of the very latest.