Delta Airlines has taken legal action against cybersecurity firm CrowdStrike following a technology outage that resulted in the cancellation of numerous flights. According to Delta, the outage was caused by CrowdStrike cutting corners, leading to a worldwide technology failure in July. The airline is seeking compensation for the damages incurred, including lost revenue and additional expenses totaling over $500 million.
The technology outage stemmed from a faulty update that was sent to millions of Microsoft computers, ultimately affecting Delta’s operations for several days. As a result, approximately 7,000 flights had to be canceled during the peak summer vacation season. The impact of the outage was not limited to Delta, as it also affected other industries such as banks, hospitals, and various businesses.
CrowdStrike has not yet responded to the lawsuit, but a lawyer representing the company has stated that other airlines were able to recover from the outage more quickly. The U.S. Department of Transportation is currently investigating why Delta experienced a longer recovery time compared to other carriers and is looking into complaints regarding customer service during the outage.
In its defense, Delta alleges that CrowdStrike failed to properly test the update before implementing it globally, leading to the catastrophic outage. The lawsuit, filed in Fulton County Superior Court in Georgia, near CrowdStrike’s headquarters, accuses the cybersecurity firm of negligence and cutting corners for its own benefit.
Following Delta’s legal action, CrowdStrike has hired legal counsel to defend itself against the allegations. The company’s lawyer, Michael Carlinsky, has refuted Delta’s claims, stating that the airline is misrepresenting CrowdStrike’s role in the IT decisions and response to the outage. Carlinsky argues that CrowdStrike’s liability should be significantly less than the $10 million sought by Delta.
As the legal battle between Delta Airlines and CrowdStrike unfolds, the implications of the technology outage on the airline industry and cybersecurity practices remain at the forefront. The outcome of this lawsuit could set a precedent for accountability in the realm of cybersecurity and the handling of technology failures that have far-reaching consequences across multiple sectors.