The issue was specific to Windows 10 workstations with BOTH Cisco AMP and CrowdStrike Falcon Sensor installed. In order to mitigate the immediate impact of the issue and enable the UBC Cybersecurity and Desktop Services teams to troubleshoot further, the decision was made to temporarily remove CrowdStrike from centrally managed workstations at the Vancouver and Okanagan campuses on Monday, May 4th.
Windows 10 interface issues for computers running Cisco AMP April 29, 2020
The UBC Cybersecurity Security Operations team is working to diagnose and resolve a number of issues on Windows 10 PCs* that have Cisco AMP for Endpoints installed, and that have received the April 2020 Windows 10 Cumulative Update. This Windows update was pushed to centrally-managed PCs at the Vancouver campus on Wednesday, April 22nd.
The issues are affecting the operation and functionality of the following:
- Windows 10 Explorer Search bar
- Shortcuts on the Windows taskbar
- Microsoft Edge browser
- Windows 10 Start Menu (resolved)
This post will be updated when the issues have been fully resolved. At this time there is no action required from UBC end users or University IT Support Staff.
* Applies to specific versions of Windows 10 only, including 1903, 1909 and in some cases, 1809.