Delta Air Lines Sues CrowdStrike Over Software Update That Led to Global Flight Disruptions and 500 USD Million Loss

Sunday, October 27, 2024

Delta Air Lines has filed a lawsuit against cybersecurity firm CrowdStrike in Georgia’s Fulton County Superior Court following a catastrophic software update in July 2023. The update led to the cancellation of 7,000 flights, affecting 1.3 million passengers and causing significant disruptions to the airline’s operations. Delta is seeking over $500 million in out-of-pocket losses, lost profits, and reputational damage, as well as compensation for legal fees.

The incident, which occurred on July 19, saw a global outage that impacted not only Delta but also industries such as banking, healthcare, media, and hospitality. The root cause, according to Delta’s lawsuit, was a faulty update from CrowdStrike, which the airline claims was “untested and faulty,” affecting over 8.5 million Microsoft Windows-based computers worldwide. Delta’s lawsuit argues that if CrowdStrike had tested the update before deployment, the system crashes could have been avoided.

As a result of the outage, Delta faced significant operational challenges, forcing the airline to cancel flights for five consecutive days. This caused widespread travel disruptions for customers, significantly harming the airline’s reputation. The U.S. Department of Transportation has since launched an investigation into the incident, highlighting its severity and impact on the travel industry.

CrowdStrike, which has been supplying Delta with cybersecurity solutions since 2022, responded by denying the airline’s claims. The company stated that Delta’s lawsuit is based on “disproven misinformation” and accused the airline of attempting to shift blame for its slow recovery following the outage. CrowdStrike further argued that Delta’s failure to modernize its outdated IT infrastructure contributed to the scale of the disruptions.

Delta refuted these claims, stating in the lawsuit that it has invested billions in building a robust IT infrastructure, positioning itself as a leader in airline technology solutions. The airline maintains that CrowdStrike is solely responsible for the chaos caused by the untested update, which crippled Delta’s operations and severely impacted its customers.

The lawsuit is set to be a major legal battle, as Delta seeks to recover the financial and reputational damage it claims to have suffered due to the global outage. The outcome of this case may have significant implications for both the airline and cybersecurity industries, especially regarding the responsibilities of service providers in critical technology failures.

• Delta Air Lines faces a financial loss of 380 million from the CrowdStrike outage: Here’s what you need to know

• CrowdStrike IT outage, a key lessons for the global regulators? What you need to know?

• How Did CrowdStrike’s New Outage Disrupt Air Travel and Impact Austin, Texas, and Atlanta, Georgia?

• CrowdStrike Defends its Role, Asserts No Connection to Delta’s Massive Flight Disruptions in July

• How Did Delta Air Lines Recover from the New CrowdStrike Outage?