#### [Security](/security/)Financial institutions told to get their house in order before the next CrowdStrike strikes===========================================================================================Calls for improvements will soon turn into demands when new rules come into force———————————————————————————[Connor Jones](/Author/Connor-Jones ‘Read more by this author’) Sat 2 Nov 2024 // 09:30 UTC [](https://www.reddit.com/submit?url=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dreddit&title=Financial%20institutions%20told%20to%20get%20their%20house%20in%20order%20before%20the%20next%20CrowdStrike%20strikes) [](https://twitter.com/intent/tweet?text=Financial%20institutions%20told%20to%20get%20their%20house%20in%20order%20before%20the%20next%20CrowdStrike%20strikes&url=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dtwitter&via=theregister) [](https://www.facebook.com/dialog/feed?app_id=1404095453459035&display=popup&link=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dfacebook) [](https://www.linkedin.com/shareArticle?mini=true&url=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dlinkedin&title=Financial%20institutions%20told%20to%20get%20their%20house%20in%20order%20before%20the%20next%20CrowdStrike%20strikes&summary=Calls%20for%20improvements%20will%20soon%20turn%20into%20demands%20when%20new%20rules%20come%20into%20force) [](https://api.whatsapp.com/send?text=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dwhatsapp) The UK’s finance regulator is urging all institutions under its remit to better prepare for IT meltdowns like that of CrowdStrike in July.The Financial Conduct Authority (FCA) said issues at unregulated third parties were the leading cause of operational disruption within Blighty’s financial institutions between 2022 and 2023.Many major organizations were affected to varying degrees by CrowdStrike’s software cockup over the summer, including some of the world’s leading banks and trading houses. JPMorgan Chase’s trade execution systems were reportedly affected, some Bloomberg terminals were rendered inaccessible, the London Stock Exchange was hit, and ION Group, UBS, CMC Markets, and others also all reported issues.  ’These outages emphasize firms’ increasing dependence on unregulated third parties to deliver important business services,’ the FCA said in a statement. ‘This highlights the importance of firms continuing to become operationally resilient in line with our rules.’We encourage all firms, regardless of how they were affected by the CrowdStrike incident, to consider these lessons, to improve their ability to respond to and recover from future disruptions.’ For those of you who somehow missed out on what will be remembered as one of the defining IT events of 2024, back in July, [CrowdStrike pushed a now-infamous channel file update to its Falcon EDR platform](https://www.theregister.com/2024/07/24/crowdstrike_validator_failure/). That update contained a critical logic error, causing Falcon to crash so hard that Windows did too, displaying blue screens of death on [8.5 million PCs worldwide](https://www.theregister.com/2024/07/25/crowdstrike_timeline/). A bad time was had by many trying to fix this.Soon, many financial institutions in the UK will be forced by the FCA to become resilient to these kinds of events. The regulator’s [rules](https://www.fca.org.uk/publications/policy-statements/ps21-3-building-operational-resilience) (PS21/3) governing third-party events like CrowdStrike’s, requiring in-scope organizations to implement robust business continuity measures that mitigate the worst impacts of incidents like IT outages, came into force in March 2022. The deadline to become compliant — March 2025 — is fast approaching.The FCA said those who had already met the requirements of PS21/3 demonstrated the best response to the [CrowdStrike outage](https://www.theregister.com/2024/09/25/crowdstrike_to_congress_perfect_storm/). They were able to effectively prioritize which systems to bring back online first, minimizing the operational impact on the business and wider market, as well as consult prepared incident response and communications plans.If they mapped their systems and third-party relationships, organizations demonstrated a stronger ability to manage their exposure to limit the overall impact of the incident.From a technical perspective, some affected institutions were forced to identify single points of failure in their tech stacks and make changes accordingly. For example, some sought alternative products or operating systems, while others decided to review their change management processes relating to software updates.The FCA urged all regulated organizations to ensure their update-testing procedures were up to scratch and amend them where necessary so any faults can be contained more easily. This especially applies to institutions whose services are relied upon by other key players in the industry.* [Delta officially launches lawyers at $500M CrowdStrike problem](https://www.theregister.com/2024/10/28/delta_airlines_crowdstrike_lawsuit/)* [CrowdStrike’s Blue Screen blunder: Could eBPF have saved the day?](https://www.theregister.com/2024/09/26/grafana_labs_interview/)* [CrowdStrike apologizes to Congress for ‘perfect storm’ that caused global IT outage](https://www.theregister.com/2024/09/25/crowdstrike_to_congress_perfect_storm/)* [1 in 10 orgs dumping their security vendors after CrowdStrike outage](https://www.theregister.com/2024/09/19/german_crowdstrike_reaction/)Other recommendations included preparing external comms templates, such as website banners so all customers and stakeholders are comprehensively informed about any issues in a timely manner. Plus, the usual incident response preparations you’d typically expect any organization to have in place.Despite the widespread impact on financial markets, the institutions involved largely got on with things and recovered relatively quickly. Little fuss has been made of the incident since.The same can’t be said for Delta Air Lines, however, which recently [launched legal proceedings](https://www.theregister.com/2024/10/28/delta_airlines_crowdstrike_lawsuit/) against CrowdStrike, looking to recoup at least some of the circa $500 million in revenue it claims to have lost thanks to the outage.Delta faced significant challenges, taking longer than most to return to service. It blamed CrowdStrike and [Microsoft](https://www.theregister.com/2024/08/07/microsoft_delta_fight/), and in response they pointed the finger straight back, saying the airline refused their offers of free technical support.CrowdStrike also alleged Delta was running on aging IT equipment, a major factor in why it took so long to recover.Shortly after Delta filed its lawsuit against the cybersecurity company, CrowdStrike itself launched a counter-suit alleging ‘Delta’s own negligence’ led to the issues it faced. ® [Sponsored: Why AI builds best on private clouds](https://go.theregister.com/tl/3104/shttps://www.theregister.com/2024/10/29/why_ai_builds_best_on/) Share [](https://www.reddit.com/submit?url=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dreddit&title=Financial%20institutions%20told%20to%20get%20their%20house%20in%20order%20before%20the%20next%20CrowdStrike%20strikes) [](https://twitter.com/intent/tweet?text=Financial%20institutions%20told%20to%20get%20their%20house%20in%20order%20before%20the%20next%20CrowdStrike%20strikes&url=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dtwitter&via=theregister) [](https://www.facebook.com/dialog/feed?app_id=1404095453459035&display=popup&link=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dfacebook) [](https://www.linkedin.com/shareArticle?mini=true&url=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dlinkedin&title=Financial%20institutions%20told%20to%20get%20their%20house%20in%20order%20before%20the%20next%20CrowdStrike%20strikes&summary=Calls%20for%20improvements%20will%20soon%20turn%20into%20demands%20when%20new%20rules%20come%20into%20force) [](https://api.whatsapp.com/send?text=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dwhatsapp) #### More about* [CrowdStrike](/Tag/CrowdStrike/)* [Cybersecurity](/Tag/Cybersecurity/)* [Outage](/Tag/Outage/) More like these × ### More about* [CrowdStrike](/Tag/CrowdStrike/)* [Cybersecurity](/Tag/Cybersecurity/)* [Outage](/Tag/Outage/)* [United Kingdom](/Tag/United%20Kingdom/) ### Narrower topics* [BBC](/Tag/BBC/)* [Brexit](/Tag/Brexit/)* [British Armed Forces](/Tag/British%20Armed%20Forces/)* [ESA](/Tag/ESA/)* [Five Eyes](/Tag/Five%20Eyes/)* [Government of the United Kingdom](/Tag/Government%20of%20the%20United%20Kingdom/)* [London](/Tag/London/)* [Parliament of the United Kingdom](/Tag/Parliament%20of%20the%20United%20Kingdom/)* [RSA Conference](/Tag/RSA%20Conference/)* [Scotland](/Tag/Scotland/)* [Zero trust](/Tag/Zero%20trust/) ### Broader topics* [EMEA](/Tag/EMEA/)* [Europe](/Tag/Europe/)* [Security](/Tag/Security/) #### More aboutShare [](https://www.reddit.com/submit?url=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dreddit&title=Financial%20institutions%20told%20to%20get%20their%20house%20in%20order%20before%20the%20next%20CrowdStrike%20strikes) [](https://twitter.com/intent/tweet?text=Financial%20institutions%20told%20to%20get%20their%20house%20in%20order%20before%20the%20next%20CrowdStrike%20strikes&url=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dtwitter&via=theregister) [](https://www.facebook.com/dialog/feed?app_id=1404095453459035&display=popup&link=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dfacebook) [](https://www.linkedin.com/shareArticle?mini=true&url=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dlinkedin&title=Financial%20institutions%20told%20to%20get%20their%20house%20in%20order%20before%20the%20next%20CrowdStrike%20strikes&summary=Calls%20for%20improvements%20will%20soon%20turn%20into%20demands%20when%20new%20rules%20come%20into%20force) [](https://api.whatsapp.com/send?text=https://www.theregister.com/2024/11/02/fca_it_resilience/%3futm_medium%3dshare%26utm_content%3darticle%26utm_source%3dwhatsapp) POST A COMMENT #### More about* [CrowdStrike](/Tag/CrowdStrike/)* [Cybersecurity](/Tag/Cybersecurity/)* [Outage](/Tag/Outage/) More like these × ### More about* [CrowdStrike](/Tag/CrowdStrike/)* [Cybersecurity](/Tag/Cybersecurity/)* [Outage](/Tag/Outage/)* [United Kingdom](/Tag/United%20Kingdom/) ### Narrower topics* [BBC](/Tag/BBC/)* [Brexit](/Tag/Brexit/)* [British Armed Forces](/Tag/British%20Armed%20Forces/)* [ESA](/Tag/ESA/)* [Five Eyes](/Tag/Five%20Eyes/)* [Government of the United Kingdom](/Tag/Government%20of%20the%20United%20Kingdom/)* [London](/Tag/London/)* [Parliament of the United Kingdom](/Tag/Parliament%20of%20the%20United%20Kingdom/)* [RSA Conference](/Tag/RSA%20Conference/)* [Scotland](/Tag/Scotland/)* [Zero trust](/Tag/Zero%20trust/) ### Broader topics* [EMEA](/Tag/EMEA/)* [Europe](/Tag/Europe/)* [Security](/Tag/Security/) #### TIP US OFF[Send us news](https://www.theregister.com/Profile/contact/)[#### Delta officially launches lawyers at $500M CrowdStrike problemLegal action comes months after alleging negligence by Falcon vendorCybersecurity Month5 days -| 23](/2024/10/28/delta_airlines_crowdstrike_lawsuit/?td=keepreading) [#### UK councils bat away DDoS barrage from pro-Russia keyboard warriorsLocal authority websites downed in response to renewed support for UkraineCyber-crime23 hrs -| 17](/2024/11/01/uk_councils_russia_ddos/?td=keepreading) [#### Tech firms to pay millions in SEC penalties for misleading SolarWinds disclosuresUnisys, Avaya, Check Point, and Mimecast settled with the agency without admitting or denying wrongdoingSoftware11 days -| 7](/2024/10/22/sec_fines_four_tech_firms/?td=keepreading) [#### Quantum computing is coming — are you ready?Are you prepared for the day that quantum computing breaks today’s encryption?Sponsored Feature](/2024/09/05/quantum_computing_is_coming_are/?td=keepreading) [#### Here’s a NIS2 compliance checklist since no one cares about deadlines anymoreOnly two EU members have completed the transposition into domestic lawCybersecurity Month9 days -| 11](/2024/10/24/nis2_compliance_checklist/?td=keepreading) [#### Google Cloud burst by 12-hour power outage in German regionLoose juice led to cooling issue in one zone, but the pain was widespreadOff-Prem8 days -| 26](/2024/10/25/google_cloud_frankfurt_outage/?td=keepreading) [#### Penn State pays DoJ $1.25M to settle cybersecurity compliance caseFight On, State? Not this timeSecurity9 days -| 3](/2024/10/23/penn_state_university_doj_settlement/?td=keepreading) [#### Amazon adds MFA to its enterprise email service … eight years after launchNo rush, guysOn-Prem2 days -|](/2024/10/31/amazon_mfa_workmail/?td=keepreading) [#### LottieFiles supply chain attack exposes users to malicious crypto wallet drainerA scary few Halloween hours for team behind hugely popular web pluginCyber-crime2 days -| 11](/2024/10/31/lottiefiles_supply_chain_attack/?td=keepreading) [#### Chinese attackers accessed Canadian government networks — for five yearsIndia makes it onto list of likely threats for the first timeCybersecurity Month2 days -| 13](/2024/10/31/canada_cybersec_threats/?td=keepreading) [#### Fired Disney staffer accused of hacking menu to add profanity, wingdings, removes allergen infoIf you’re gonna come at the mouse, you need to be better at hiding your tracksSecurity3 days -| 57](/2024/10/30/fired_disney_employee_hacks_menu/?td=keepreading) [#### Russian spies use remote desktop protocol files in unusual mass phishing driveThe prolific Midnight Blizzard crew cast a much wider net in search of scrummy intelCyber-crime3 days -| 17](/2024/10/30/russia_wrangles_rdp_files_in/?td=keepreading)
Related Tags:
NAICS: 921 – Executive
Legislative
Other General Government Support
NAICS: 72 – Accommodation And Food Services
NAICS: 52 – Finance And Insurance
NAICS: 518 – Computing Infrastructure Providers
Data Processing
Web Hosting
Related Services
NAICS: 92 – Public Administration
NAICS: 523 – Securities
Commodity Contracts
Other Financial Investments And Related Activities
NAICS: 522 – Credit Intermediation And Related Activities
NAICS: 721 – Accommodation
NAICS: 51 – Information
Associated Indicators: