Delta suing over software problems
And, more on the question of software, Delta is suing cybersecurity firm Crowdstrike over its outage last summer which, it claims, caused Delta to cancel over 7,000 flights, and cost the company $500,000,000.
The airline is asking for compensation and punitive damages from the outage, which started with a faulty update sent to several million Microsoft computers. Delta said the outage crippled its operations for several days, costing more than $500 million in lost revenue and extra expenses.
The outage hit several airlines and caused millions of customers canceled and rescheduled flights.
Oh, and Crowdstrike blames Delta’s “antiquated” systems for its problems.
A CrowdStrike spokesperson said the company tried to resolve the dispute — one of its lawyers said in August that CrowdStrike’s liability to Delta was less than $10 million.
The spokesperson said Delta’s claims are based on “misinformation, demonstrate a lack of understanding of how modern cybersecurity works, and reflect a desperate attempt to shift blame for its slow recovery away from its failure to modernize its antiquated IT infrastructure.”
Number one question a software company asks a potential client company: “What will you be running our software ON?” Equipment compatibility is key. I’d bet Delta said “we are running blah di blah on yada yada mainframes” and Crowdstrike replied “ah, no problemo…sign here.” High dollar sales don’t like to get caught short after failing to ask obvious stupid questions, and some software just won’t run on outdated hardware.
In its lawsuit, Delta claims that the outage occurred because CrowdStrike failed to test the update before rolling it out worldwide.
Delta canceled about 7,000 flights over a five-day period during the peak summer vacation season. The outage also affected banks, hospitals and other businesses.
“CrowdStrike caused a global catastrophe because it cut corners, took shortcuts, and circumvented the very testing and certification processes it advertised, for its own benefit and profit,” Delta said in the lawsuit, which was filed in Fulton County Superior Court in Georgia, near the company’s headquarters.
Given how many business were impacted, sounds like Crowdstrike may be on thinnish ice. Going to be interesting to see how an Atlanta judge rules on this, eh?
Later edit – if you’re experiencing a bit of shadenfreude about all the software issues not affecting you – think again. According to Tom’s Guide the data breach caused by hacker group ALPHV (aka “Black Cat”) on United Healthcare has hit 100,000,000 people. Call it a bit under a third of the US population.
According to public notices the company pushed out in June, the stolen data includes: billing, claims, and payment information; medical information such as diagnoses, test results, and medical record numbers; health insurance information such as member/group ID numbers; and personal information such as Social Security numbers and driver’s licenses or state ID numbers.
I feel better…
Category: "The Floggings Will Continue Until Morale Improves", Crime, Economy
Unless Delta is running systems on Win98, most updates should be backwards compatible.
Methinks Crowdstrike is skating on thin ice here.
As Directed of Media Relations for the proud but humble woman owned business that sold the software, allow Hack to explain “the rest of the story”. Sure, we purchased the software from who we believe is an authorized third party vendor selling his wares from the trunk of his car in the parking lot of the Dulles Convention Center, because who has the $20 entry fee to gain entrance, but the guy pinky swore that this was the real deal. How is that our fault?
I guess that everyone that had problems with this software were running obsolete hardware? Somehow I find that hard to believe.
How many folks couldn’t upgrade their PCs from Windows 7 to 10 or 10 to 11 due to hardware compatibility issues.
Several years ago pre -pandemic a local base pushed a software update to 10,000 or so computers on the Base network. Before doing so they even tested it on a couple standard desktops widely used on the Base.
The “standard” desktops CPUs and such were representative of the hardware used for the pre-deployment test with one exception. Approximately 40% had different keyboards and these keyboards and their self-contained CAC readers didn’t work with the update. Without a working CAC reader they couldn’t access the network to include e-mail.
Just an example…my desktop has more than enough storage, RAM, and four times the minimum required CPU speed needed for W11, but since said CPU is not on Microsoft’s ‘approved’ list, I can’t upgrade to W11. Guess I’ll have to change it over to Linux, too.
David,
Planned obsolescence.
Intel, Microsoft, and even Hewlett-Packard (printers) have been doing this for 25 years, since the release of Windows2000.
Not only for peripheral hardware, but ALSO for gamer software.
It pissed me off, when my 1990s HP LaserJet III
was DROPPED from compatibility (no new drivers)
with later versions of Windows (XP – Ugh).
But it saw new life with my 1st installation of Ubuntu Linux.
<—- I run Ubuntu Linux (sorry Hack Stone)
on the primary ancient laptop, a 2011 rocket ship that I replaced the 2 spinning hard drives with 1 solid state,
as well as past back up PCs,
after “not compatible with Windows10” was the verdict.
<—- I just bought a new HP Envy PC, with Windows 11,
on sale at Best Buy, and of course, my now ancient HP Officejet 4500 printer is NOT compatible with Windows 11.
Imagine that.
Better yet, this old printer (as well as almost ALL old printers)
easily detected plug and play by the Ubuntu Linux laptop,
and printing continues here, not on the new PC,
but on the laptop, from emails and websites,
as I ponder a new printer purchase.
No hurry here. I’ll spot a bargain, when I’m in the mood.
BTW, for this HP Envy PC……
VGA resolution is bad (20 year old tube monitor range),
not even what 10 year old PCs and laptops supported,
so go with the HDMI connector on the PC and the TV (monitor).
Also, the built in wireless WiFi is relatively slow (90Mbps),
so go with the RJ45 cable to the FIOS router jack (310Mbps).
https://www.bestbuy.com/site/hp-envy-desktop-intel-core-i7-16gb-memory-1tb-ssd-black/6573475.p?skuId=6573475
I have an “ancient” HP Pavilion g6 that chugs along on Win7 very nicely ThankYouVeryMuch. It’s connected to the internet. It’s NOT connected to a printer, so that simplifies things. I run Brave for my browser and search engine. The only thing wrong is that part of the keyboard has quit (I,O,P & a couple of others), so I plug in an external keyboard. Someday I may decide to take it in for repair.
I keep getting these online notifications that I need to upgrade to Win10 (HA! as if!). But this laptop can’t, and I won’t even if I could. I went into settings and (hopefully) turned off the update notifications.
I love Win7, boots up quickly, easy to use.
PETDRSAHN,
Offline (no internet), for dedicated home or business use, and as LAN desktops or servers (or electronic test equipment docks / controllers), Windows2000, Windows7, even the short lived Windows Vista in between, were/are rock solid.
As I said in the 1990s, largely ignored by some really really stupid large companies over the following decades, there is / was never an important reason to connect plant infrastructure, such as temperature / air condition / heating, or process control of manufacturing of any kind, to the internet, or to anything wireless.
The convenience(s) have come at great cost and damage control to untold numbers of businesses.
Worse, you would think that electronics and high tech companies (examples Phoenix Contact and BMW (both German based)) would have seen this coming, and avoided stepping in their own poop, and with their own in house built technology.
I got to enjoy the results of this failure. Got stuck in the Jackson Hole airport for 18 hours (although watching the JH liberals melt down over Joe’s exit was enjoyable), followed by 24 hours in the SLC airport. Utah produces some damn good beer these days, thank the Lord!
You’re welcome.
Wasatch Brewing may have saved my life.
Mrs. GB and I are impacted by the United Health Care failure through Change Healthcare who subcontracted with a company identified as IDX to monitor our credit records.
The problem is, IDX’s webpages are not secure, and the security settings on my browser will not allow connection to them. Calling the “help desk” gets a nice person who seems to be completely clueless about how to get that fixed. I was supposed to get a call “within 24 hours” two weeks ago…
Long and short of it: There is no security or privacy on the internet for any of our information.
I see young adults using phone apps to do their banking, even taking pictures of their checks to ‘deposit’ the money, and think “someday all that is going to be stolen from you and you’ll have nothing.”
Oh, yeah…
Windows hoovers and Crowdstrike fornicated fido.
Oh, data breaches, how I love thee! (or, how I stopped worrying and learned to love being a time-suck prick by making appointments for anything)
……
Got a ration of shit from the wife-equipment, 1 each for swearing at ID[dot]gov for wanting a picture of my state ID and some other info.
My very loud and forceful response was “F these a$$holes”.
She, always quick to think I’m just recalcitrant for the sake of it and her own desire to catastrophize everything, implored me to continue down that road to access DEERS and to see what I had left on the post-9/11 GI bill.
“Do you understand how many times these m*****r f*****rs have gotten my info stolen??!!”, gesturing at the computer.
“Besides, there is not-a-damn-thing I can’t accomplish by making an appointment and talking to one of these wonderful gov’mint employees face-to-face.”
“Ok.. but….”, I stopped her:
“Even if I really hated them, as long as they take care of you, I’ll put it on the ‘back burner'”.
…..
OPM: Office of [Personally Identifying Information] Mismanagement
Office of Problem Manufacture
Lock your credit folks. Your stuff is either already leaked, or soon to be leaked.
And seriously consider a protective service.
“All your base belong to us!”
– Crowdsrtike