Crowdstrike: Delta Air Lines refused free help to resolve IT outage
The legal sparring between Delta Air Lines and CrowdStrike is heating up, with the cybersecurity firm claiming that Delta’s extended IT outage was caused by poor disaster recovery plans and the airline refusing to accept free onsite help in restoring Windows devices.
After CrowdStrike pushed out a faulty update for its Falcon cybersecurity software, over 8.5 million Windows devices suddenly crashed and would no longer boot into the operating system.
To fix the issues, IT staff were required to manually remove the bad update from Windows devices, leading to extended IT outages for companies with thousands of devices.
Delta’s outages lasted for five days as the company attempted to restore servers, leaving airline passengers stranded as thousands of flights were disrupted.
Last week, Delta Air Lines CEO Ed Bastian appeared on CNBC, where he explained that the airline lost $500 million due to the IT outages, stating that CrowdStrike offered nothing but “free consulting advice to help us.”
Due to the massive revenue loss, Bastian said they had no choice but to sue CrowdStrike to protect their shareholders, customers, and employees.
“So anyway, we have to protect our shareholders. We have to protect our customers, our employees–for the damage, not just to the cost, but the brand, the reputational damage, and the physical challenge,” Bastian said in an interview on CNBC’s SquawkBox.
Delta hired litigator David Boies, who reportedly sent letters to CrowdStrike and Microsoft warning the companies to prepare for litigation around these outages.
CrowdStrike’s counsel, Michael Carlinsky, responded Sunday, rejecting the claims that the cybersecurity firm “was grossly negligent or committed willful misconduct” in regards to the faulty update or is solely responsible for Delta’s extended IT outage.
“Within hours of the incident, CrowdStrike reached out to Delta to offer assistance and ensure Delta was aware of an available remediation,” reads the letter from CrowdStrike’s counsel, Michael Carlinsky.
“Additionally, CrowdStrike’s CEO personally reached out to Delta’s CEO to offer onsite assistance but received no response. CrowdStrike followed up with Delta on the offer for onsite support and was told that the onsite resources were not needed.”
CrowdStrike also questioned why Delta’s competitors, who faced similar challenges, could restore operations quicker, implicating that faulty procedures and infrastructure were partly responsible for the airline’s lengthy outages.
The cybersecurity firm is now calling on Delta to “reconsider its approach.”.
However, in light of the legal threats, CrowdStrike is now asking Delta to preserve data, emails, and communications related to the Falcon incident to be used in potential discovery during a lawsuit.