The sell off in CrowdStrike Holdings roared on Monday in the wake of a widespread IT outage caused by the cybersecurity firm's software update. Wall Street analysts responded to the IT outage with at least two downgrades of Crowdstrike stock while several brokerages slashed price targets.
On the stock market today, CrowdStrike stock fell 13.5% to close at 263.91. CRWD stock tumbled 10% on Friday as the IT outage unfolded.
With the losses, CrowdStrike stock is now up only 3% in 2024. Further, CRWD stock hit a 52-week high of 398.33 on July 9.
Guggenheim and BTIG on Monday downgraded CrowdStrike stock to hold from buy. Oppenheimer removed CrowdStrike from its "2024 Top Picks" list. Morgan Stanley, Well Fargo, RBC Capital and a few other brokerages slashed price targets on CrowdStrike stock.
In a blog post July 20, Microsoft estimated that 8.5 million Windows devices were impacted by the CrowdStrike outage.
"While software updates may occasionally cause disturbances, significant incidents like the CrowdStrike event are infrequent," Microsoft said. "We currently estimate that CrowdStrike's update affected 8.5 million Windows devices, or less than one percent of all Windows machines. While the percentage was small, the broad economic and societal impacts reflect the use of CrowdStrike by enterprises that run many critical services."
In a post on X, formerly called Twitter, Sunday night CrowdStrike said: "Of the approximately 8.5 million Windows devices that were impacted, a significant number are back online and operational."
Financial Consequences For CrowdStrike Stock?
CrowdStrike Chief Executive George Kurtz on Friday in a statement said: "This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed." He said "a defect in a single content update for Windows hosts caused the problem."
Still, CrowdStrike customers could seek compensation, analysts say.
"There is a risk of large potential liability claims from customers that were affected by the outages," said Raj Joshi, a senior VP at Moody's Ratings, said in a release. "While this incident calls into question CrowdStrike's software engineering practices, it also underscores growing vulnerabilities in global cloud infrastructure from increasing points of failure."
CrowdStrike competes with Palo Alto Networks, SentinelOne, Microsoft and others in the "endpoint" market. Endpoint security tools detect malware on laptops, mobile phones and other devices that access corporate networks. Meanwhile, CrowdStrike's second quarter ends July 31.
SentinelOne stock rose 6.7% to 23.18 on Monday.
"We believe there will be financial consequences from this issue," said BMO Capital Markets analyst Keith Bachman in a report. "As one example, we think customers will be seeking relief and compensation from damages, which we think could include discounts or credits for both new contracts and renewals. Hence, we think there could be an impact on growth rates and cash."
Meanwhile, Tesla, SpaceX and X Chief Executive Elon Musk on Friday said "We just deleted CrowdStrike from all our systems," in a social media post. Musk did not elaborate if it was for one or all of his companies.
Black Eye For CrowdStrike Stock
At Jefferies, analyst Joseph Gallo had a dire view.
"This could be an expense burden for CrowdStrike given it has to invest to clean up the issue and potentially dispense credits which could impact margin," Gallo said. "While we don't know how CrowdStrike will appease its customers who dealt with outages and potential lost revenue ... we assume it will require credits, discounting or additional free products."
Gallo added: "Furthermore, this will lead to CrowdStrike reputational damage, particularly for mission critical infrastructure and government customers that could elongate deal cycles. The biggest impact is that this transpired in the last two weeks of the quarter, which are the most important and will likely significantly constrain potential upside as new customers await assurances that the situation has been handled."
Cybersecurity stocks rank No. 131 out of 197 industry groups tracked by IBD.
Also, CrowdStrike is building a broad, threat-detection cybersecurity platform called XDR, or extended detection and response. Further, it monitors endpoints as well as web/email gateways, web application firewalls and cloud business workloads.
Black Eye For CrowdStrike Stock
"While management confirmed this issue was not the result of a cyber breach, we believe the company will certainly need to deal with the blowback from triggering such a widespread outage of a global nature," said William Blair analyst Jonathan Ho in a report. "Ordinarily, CrowdStrike's global reach is a significant positive, but time will tell if this issue impacts any future business opportunities, as organizations are still resolving the issue. In our view, this type of issue has occurred for other core system vendors, but it does create a proverbial black eye for the company".
At TD Cowen, analyst Shaul Eyal said companies will likely increase spending on computer backup systems as a result of the global outage.
"Enterprises are likely to examine their incident response capabilities and the need to carry backup plans. We envision an emergency driven spending cycle," Eyal said.
At Wedbush, analyst Daniel Ives said in a report: "CrowdStrike has a strong brand and global marketing presence which will need to go into next gear over the coming weeks and months to curtail some damage from this."
Follow Reinhardt Krause on Twitter @reinhardtk_tech for updates on artificial intelligence, cybersecurity and cloud computing.