Delta’s lawsuit is seeking compensation for lost revenue and additional expenses incurred as a result of the technology outage that occurred in July, which caused thousands of canceled flights. The outage was attributed to a faulty update sent to millions of Microsoft computers, disrupting operations not only for Delta but also for other businesses such as banks and hospitals. The lawsuit claims that CrowdStrike, the cybersecurity company responsible for the update, failed to test it before rolling it out worldwide.
The U.S. Department of Transportation is investigating why Delta took longer to recover from the outage compared to other carriers. Transportation Secretary Pete Buttigieg has also expressed concerns about complaints regarding Delta’s customer service during the outage, including reports of long wait times for help and unaccompanied minors being stranded at airports. This investigation could shed more light on the circumstances surrounding the outage and Delta’s response to the crisis.
Delta alleges that CrowdStrike’s negligence and failure to adhere to proper testing and certification processes led to the global catastrophe that resulted in significant financial losses for the airline. The lawsuit, filed in Fulton County Superior Court in Georgia, near Delta’s headquarters, accuses CrowdStrike of cutting corners and taking shortcuts for its own benefit and profit. Additionally, CrowdStrike has denied these claims, stating that Delta’s understanding of cybersecurity is lacking and that the airline is attempting to shift blame for its slow recovery away from its outdated IT infrastructure.
CrowdStrike has attempted to resolve the dispute with Delta, with one of its lawyers stating that the company’s liability to the airline is less than $10 million. The cybersecurity company has refuted Delta’s claims, asserting that they are based on misinformation and demonstrate a misunderstanding of modern cybersecurity practices. CrowdStrike maintains that Delta’s slow recovery was the result of its failure to update its antiquated IT infrastructure, rather than any shortcomings on the part of the cybersecurity company.
As the legal battle between Delta and CrowdStrike continues, the aviation industry and cybersecurity sector are closely watching the developments. The outcome of this lawsuit could have implications for how companies handle technology outages and cybersecurity incidents, especially in critical sectors such as aviation. Both Delta and CrowdStrike are expected to present their evidence and arguments in court, with the hope of reaching a resolution that addresses the financial losses incurred by the airline and provides clarity on the responsibilities of cybersecurity providers in preventing similar incidents in the future.
The lawsuit highlights the potential risks associated with technology failures in the aviation industry, where disruptions can have far-reaching consequences for both businesses and passengers. As the investigation by the U.S. Department of Transportation progresses, more details may emerge regarding the root cause of the outage and the actions taken by Delta and CrowdStrike to address the crisis. The outcome of this legal dispute could set a precedent for how companies handle cybersecurity incidents and hold providers accountable for their role in preventing and mitigating such disruptions in the future.
