Blame Game ?

Accountability: The CrowdStrike and Delta Airlines Outage

By James J. Dimmer III

In the ever-evolving landscape of cybersecurity, the recent debacle involving CrowdStrike and Delta Airlines underscores the intricate balance of responsibility and the crucial role of effective communication.

Incident

In July 2024, Delta Air Lines Airlines faced a significant IT outage that led to the cancellation of thousands of flights, costing the airline an estimated $500 million. Delta quickly pointed fingers at CrowdStrike, their cybersecurity provider, accusing them of failing to prevent the incident and not providing adequate support during the crisis.

Response

CrowdStrike responded firmly, stating that Delta had turned down their offer for on-site assistance during the outage. They emphasized that the root cause of the disruption was a failed routine software update, not a lapse in cybersecurity measures. Furthermore, CrowdStrike claimed that Delta’s internal IT decisions contributed significantly to the prolonged impact of the outage. The cybersecurity firm reiterated that they should not be blamed for Delta's flight disruptions, highlighting a "misleading narrative" promoted by Delta.

Impact

The fallout from the outage was substantial. According to Parametrix , the global IT outage linked to CrowdStrike is estimated to cost Fortune 500 companies $5.4 billion in direct financial losses. Cyber insurance is expected to cover only 10% to 20% of these losses due to high-risk retentions and policy limits. This incident highlights the broader implications for businesses and insurers alike, underscoring the importance of comprehensive risk management strategies.

Broad Implications

This incident highlights several critical points for businesses relying on external cybersecurity firms:

1. Clear Communication: Both parties must maintain transparent and timely communication, especially during a crisis.

2. Shared Responsibility: While cybersecurity firms play a pivotal role in protecting data and systems, companies must also ensure their internal protocols and responses are robust.

3. Proactive Measures: Continuous updates, regular drills, and accepting expert assistance can mitigate the impact of unforeseen issues.

As the finger-pointing continues, the key takeaway for industry leaders is the necessity of a collaborative approach to cybersecurity, ensuring all parties are aligned and prepared to handle potential disruptions.

Additional articles [Aviation Week](https://aviationweek.com ), [Cybersecurity Dive](https://cybersecuritydive.com ), and [Reuters](https://www.reuters.com ).

About the Author

James J. Dimmer III has been consulting and building voice and data networks from the days of "two cans and a string" to today's modern high-speed, 100-gigabyte networks. With over 20 years of experience, he's a seasoned Cloud and Voice Executive who has seen it all—from the prehistoric era of dial-up to the lightning-fast gigabit connections of today. Known for his ability to build CLOUD / UC / SaaS including fiber and outside plant infrastructure, James combines his extensive background with a knack for making complex technology solutions seem simple, accessible, and efficient.

Connect with James on [LinkedIn](https://www.dhirubhai.net ) or reach out via email at [[email protected] ].