Preparing for the Next Worldwide Tech Outage

As tech leaders race to bring Windows systems back online after Friday’s software update by cybersecurity company CrowdStrike crashed around 8.5 million machines worldwide, experts share with CIO Journal their takeaways for preparing for the next major information technology outage.

Be familiar with how vendors develop, test and release their software

IT leaders should hold vendors deeply integrated within IT systems, such as CrowdStrike , to a “very high standard” of development, release quality and assurance, said Neil MacDonald , a Gartner vice president.

“Any security vendor has a responsibility to do extensive regression testing on all versions of Windows before an update is rolled out,” he said.

That involves asking existing vendors to explain how they write software, what testing they do and whether customers may choose how quickly to roll out an update.

“Incidents like this remind all of us in the CIO community of the importance of ensuring availability, reliability and security by prioritizing guardrails such as deployment and testing procedures and practices,” said Amy Farrow, chief information officer of IT automation and security company Infoblox.

Re-evaluate how your firm accepts software updates from ‘trusted’ vendors

While automatically accepting software updates has become the norm—and a recommended security practice—the CrowdStrike outage is a reminder to take a pause, some CIOs said.

“We still should be doing the full testing of packages and upgrades and new features,” said Paul Davis, a field chief information security officer at software development platform maker JFrog . undefined undefined Though it’s not feasible to test every update, especially for as many as hundreds of software vendors, Davis said he makes it a priority to test software patches according to their potential severity and size.

Automation, and maybe even artificial intelligence-based IT tools, can help.

“Humans are not very good at catching errors in thousands of lines of code,” said Jack Hidary, chief executive of AI and quantum company SandboxAQ. “We need AI trained to look for the interdependence of new software updates with the existing stack of software.”

Develop a disaster recovery plan

An incident rendering Windows computers unusable is similar to a natural disaster with systems knocked offline, said Gartner’s MacDonald. That’s why businesses should consider natural disaster recovery plans for maintaining the resiliency of their operations.

One way to do that is to set up a “clean room,” or an environment isolated from other systems, to use to bring critical systems back online, according to Chirag Mehta, a cybersecurity analyst at Constellation Research.

Businesses should also hold tabletop exercises to simulate risk scenarios, including IT outages and potential cyber threats, Mehta said.

Companies that back up data regularly were likely less impacted by the CrowdStrike outage, according to Victor Zyamzin, chief business officer of security company Qrator Labs. “Another suggestion for companies, and we’ve been saying that again and again for decades, is that you should have some backup procedure applied, running and regularly tested,” he said.

Review vendor and insurance contracts

For any vendor with a significant impact on company operations , MacDonald said companies can review their contracts and look for clauses indicating the vendors must provide reliable and stable software.

“That’s where you may have an advantage to say, if an update causes an outage, is there a clause in the contract that would cover that?” he said.

If it doesn’t, tech leaders can aim to negotiate a discount serving as a form of compensation at renewal time, MacDonald added.

The outage also highlights the importance of insurance in providing companies with bottom-line protection against cyber risks, said Peter Halprin, a partner with law firm Haynes Boone focused on cyber insurance.

This coverage can include protection against business income losses, such as those associated with an outage, whether caused by the insured company or a service provider, Halprin said.

Weigh the advantages and disadvantages of the various platforms

The CrowdStrike update affected only devices running Microsoft Windows-based systems , prompting fresh questions over whether enterprises should rely on Windows computers.

CrowdStrike runs on Windows devices through access to the kernel, the part of an operating system containing a computer’s core functions. That’s not the same for Apple ’s Mac operating system and Linux, which don’t allow the same level of access, said Mehta.

Some businesses have converted to Chromebooks , simple laptops developed by Alphabet -owned Google that run on the Chrome operating system . “Not all of them require deeper access to things,” Mehta said. “What are you doing on your laptop that actually requires Windows?”

China’s securities regulator is ramping up support for the country’s embattled equities markets, announcing measures to funnel capital into Chinese stocks.

The aim: to draw in more medium to long-term investment from major funds and insurers and steady the equities market.

The latest round of policy boosts comes as Chinese stocks start the year on a soft note, with investors reluctant to add exposure to the market amid lingering economic woes at home and worries about potential tariffs by U.S. President Trump. Sharply higher tariffs on Chinese exports would threaten what has been one of the sole bright spots for the economy over the past year.

Thursday’s announcement builds on a raft of support from regulators and the central bank, as officials vow to get the economy back on track and markets humming again.

State-owned insurers and mutual funds are expected to play a pivotal role in the process of stabilizing the stock market, financial regulators led by the China Securities Regulatory Commission and the Ministry of Finance said at a press briefing.

Insurers will be encouraged to invest 30% of their annual premiums earning from new policies into China’s A-shares market, said Xiao Yuanqi, vice minister at the National Financial Regulatory Administration.

At least 100 billion yuan, equivalent to $13.75 billion, of insurance funds will be invested in stocks in a pilot program in the first six months of the year, the regulators said. Half of that amount is due to be approved before the Lunar New Year holiday starting next week.

China’s central bank chimed in with some support for the stock market too, saying at the press conference that it will continue to lower requirements for companies to get loans for stock buybacks. It will also increase the scale of liquidity tools to support stock buyback “at the proper time.”

That comes after People’s Bank of China in October announced a program aiming to inject around 800 billion yuan into the stock market, including a relending program for financial firms to borrow from the PBOC to acquire shares.

Thursday’s news helped buoy benchmark indexes in mainland China, with insurance stocks leading the gains. The Shanghai Composite Index was up 1.0% at the midday break, extending opening gains. Among insurers, Ping An Insurance advanced 3.1% and China Pacific Insurance added 3.0%.

Kai Wang, Asia equity market strategist at Morningstar, thinks the latest moves could encourage investment in some of China’s bigger listed companies.

“Funds could end up increasing positions towards less volatile, larger domestic companies. This could end up benefiting some of the large-cap names we cover such as [Kweichow] Moutai or high-dividend stocks,” Wang said.

Shares in Moutai, China’s most valuable liquor brand, were last trading flat.

The moves build on past efforts to inject more liquidity into the market and encourage investment flows.

Earlier this month, the country’s securities regulator said it will work with PBOC to enhance the effectiveness of monetary policy tools and strengthen market-stabilization mechanisms. That followed a slew of other measures introduced last year, including the relaxation of investment restrictions to draw in more foreign participation in the A-share market.

So far, the measures have had some positive effects on equities, but analysts say more stimulus is needed to revive investor confidence in the economy.

Prior enthusiasm for support measures has hardly been enduring, with confidence easily shaken by weak economic data or disappointment over a lack of details on stimulus pledges. It remains to be seen how long the latest market cheer will last.

Mainland markets will be closed for the Lunar New Year holiday from Jan. 28 to Feb. 4.