Delta Air Lines has sued CrowdStrike to Georgia forsoftware update that he has sent systems all over the world into a tailspin this summerresulting in disruptions and the suspension of operations of several companies.
Delta was among the hardest hitand returned fully operational only after several days. In addition to the airline sector, the failed CrowdStrike update has had repercussions on banks, hospitals and hotel chains, affecting over 8.5 million computers.
US airline accuses cybersecurity firm of breach of contract and negligence. Delta canceled approximately 7,000 flights due to system crashes, manifested by the iconic Windows BSODs, leaving 1.3 million passengers stranded in five days.
According to Delta, the issue caused by a CrowdStrike update caused it to suffer harm in terms of turnover equal to 380 million dollarsto which are added costs incurred for 170 million dollars. Delta asks the court for CrowdStrike to pay a compensation that covers the losses suffered, in addition to procedural ones and a further fine for the chaos created.
“CrowdStrike caused a global catastrophe because it operated superficiallytook shortcuts and circumvented the very testing and certification processes it advertised, for its own benefit and profit,” Delta said in the complaint.”If CrowdStrike had tested the flawed update on even a single computer before deployment, the computer would have crashed. Because the faulty update could not be removed remotely, CrowdStrike crippled Delta’s business and created massive delays for Delta customers.”
In the case Delta explains that it had disabled automatic updates for CrowdStrikebut the fatal update still reached his systems. According to the airline, CrowdStrike’s Falcon software created and exploited an unauthorized port in Windows that the airline said it never allowed.
CrowdStrike CEO George Kurtz apologized for the incident and the company pledged to change its modus operandi to avoid similar events. Microsoft also announced changes to its Windows security framework following the incident. Furthermore, CrowdStrike reduced its financial forecasts precisely to take on “commitments to customers” linked to the matter.
“While we aimed to reach a business resolution that put customers firstDelta has chosen a different path,” a CrowdStrike spokesperson said. “Delta’s claims are based on incorrect and unproven informationhighlight a lack of understanding of how modern cybersecurity works and reflect a desperate attempt to shift the blame for its slow recovery to the failure to modernize its antiquated IT infrastructure“. Delta’s complaint she’s not the only one against CrowdStrike.
Source: www.hwupgrade.it
