Airlines, media, retailers, hospitals, banks, and essentially, any organization that relied on CrowdStrike鈥檚 service to protect their Microsoft system from viruses and malware, are still recovering from the unprecedented global IT outage on Friday, with 8.5 million Windows devices affected.

Experts and analysts regard the incident as a wake-up call for a more resilient and less monopolized global digital infrastructure, warning that the world will be more vulnerable facing such disruptions, which could become a 鈥渘ew normal.鈥�

Unprecedented outage

On Friday, customers across the world of CrowdStrike, a cyber security company based in Austin, Texas, started to see the 鈥渂lue screen of death鈥� on their Windows system after installing a faulty Falcon sensor update on Thursday night.

Essentially, Falcon monitors what is happening on the computers on which it is installed and looks for signs of nefarious activity such as malware. This means that Falcon is deeply integrated into Microsoft鈥檚 system to the extent that when it falters, the system does too.

鈥淲e currently estimate that CrowdStrike鈥檚 update affected 8.5 million Windows devices, or less than 1 percent of all Windows machines,鈥� Microsoft said in its blog post on Saturday.

Following what Microsoft calls 鈥渟ignificant incidents,鈥� the company said it has 鈥渕aintained ongoing communication with customers, and is working with CrowdStrike and external developers to collect information and expedite solutions.鈥�

Just hours following the outage, scams, phishing e-mails and other criminal activities started to target CrowdStrike customers concerning the incident, under the guise of customer service and technical support.

鈥淭he scale of this outage is unprecedented, and will no doubt go down in history,鈥� said Junade Ali, a cyber security expert and fellow at the London-based Institution of Engineering and Technology.

鈥淯nlike some previous outages that targeted Internet infrastructure, this situation directly impacts end-user computers and could require manual intervention to resolve, posing a significant challenge for IT teams globally,鈥� Ali added.

Experts estimate a full recovery from a disruption at such a scale will take weeks.

鈥淚t seems that millions of computers are going to have to be fixed by hand,鈥� said Mikko Hypponen, chief research officer at WithSecure, a cyber security company.

Recovery is particularly challenging for small and medium-sized enterprises, which have fewer resources and IT staff to do the manual fixing, said Joe Tidy, a BBC cyber correspondent.

More disruptions to come

Almost 30,000 flights were delayed on Friday and nearly 7,000 were canceled worldwide, according to Euronews.

鈥淭he outage is likely to intensify regulations for critical services and risk management,鈥� said Madeleine Stevens, an IT expert at Liverpool John Moores University.

鈥淒espite the incident not being a cyber attack, consumer skepticism will inadvertently be impacted, and this unintended demonstration of our cyber vulnerability will raise significant challenges for IT service providers,鈥� Stevens said.

The fact that the largest global IT outage so far was caused not by cyber attacks or ill-intentioned actors but, ironically, by a routine update from a cyber security software, has once again exposed the systemic risk stemming from an increasingly omniscient and intertwined digital infrastructure and a world which relies on it.

More 鈥渄igital pandemics鈥� like this are expected to emerge from enhanced global economic integration, said John Bryson, chair in enterprise and economic geography at Birmingham Business School, the University of Birmingham.

The global cyber-energy-production plexus, or the 鈥渕ultiple connections between telecommunications, energy and production networks,鈥� leave us all exposed to unknown disruptions at an unprecedented scale, Bryson added.

Axel Legay, a professor of computer science at the Catholic University of Leuven, said that the more interconnected a computer is, the more vulnerable it becomes.

鈥淭he more interconnected the software is, the more vulnerable we will be, because more and more software will interact and it will increase,鈥� Legay said in an interview with Euronews Next.

Backups and antitrust

The largest cyber incident so far has offered lessons to stakeholders from tech companies, regulators and businesses to prepare for more frequent and widespread disruptions in digital infrastructure in the future.

鈥淎 core issue is the ability of a digitally enabled service function to switch immediately to manual,鈥� Bryson said.

鈥淚n other words, there needs to be an ability to provide services using paper rather than digital solutions. The real danger is that we all forget how to live and work in a pre-digital environment,鈥� he said.

The IT expert also highlighted the importance of companies having 鈥渁ir-gapped鈥� backups, which are isolated from the cyber-energy-production plexus.

While individual organizations are recommended to spend more resources on off-grid backups and staff training over working without computers, some argue the incident showcases the urgency to regulate the highly monopolized market.

The outage 鈥渋s the result of a software monopoly that has become a single point of failure for too much of the global economy,鈥� George Rakis, executive director of NextGen Competition, whose group advocates for more stringent antitrust enforcement, was quoted as saying by The Washington Post.

The report added that legislators from three Congressional committees 鈥� House Oversight, House Homeland Security, and House Energy and Commerce 鈥� asked Microsoft and CrowdStrike to brief them on the cause and impact of the outage on various agencies on Friday.

鈥淲hen just three companies 鈥� Microsoft, Amazon and Alphabet Inc鈥檚 Google 鈥� dominate the market for cloud computing, one minor incident can have global ramifications,鈥� wrote Parmy Olson, a Bloomberg Opinion columnist covering technology.

Olson argues that policy-makers could address the world鈥檚 over-reliance on just three cloud providers and push the Big Techs to do more than simply administer a band-aid.

Why does a global computational infrastructure seem to have one point of failure, Brooklyn-based columnist Edward Ongweso Jr asked in a Guardian analysis on Saturday.

Because of concentration, consolidation and monopolization, he argued.

鈥淲e鈥檝e had these sorts of outages before and nothing has changed, partly because the tech industry has been so adept at shifting blame. If that continues, then the monopolists will do what they please and everyone will suffer what they must,鈥� he said.