Recommended reading

Delta's lawsuit against CrowdStrike to go ahead after okay from Judge

News
By published

The judge has partially denied CrowdStrike’s motion to dismiss

A wooden judges' gavel in the foreground with a golden set of scales in the backgroundr
(Image credit: Getty Images)
  • The faulty CrowdStrike update disrupted operations at Delta
  • The airline sued the cybersecurity outfit, which then filed a motion to dismiss
  • The judge denied the motion and gave the lawsuit the go-ahead

Delta’s lawsuit against cybersecurity outfit CrowdStrike got the judge’s green light and will proceed. Earlier this May, Judge Kelly Lee Ellerbe filed their decision with the Fulton County Superior Court, denying CrowdStrike’s motion to dismiss and allowing most of Delta’s claims to move forward.

Here is a little context: Last year, cybersecurity company CrowdStrike pushed a faulty update to users on Windows devices, causing widespread disruption. Banks, airlines, TV broadcasters, and many other companies, were unable to operate nominally due to the dreaded Blue Screen of Death popping up across their IT infrastructure.

US airline Delta was hit particularly hard. According to The Register, it took five days to recover, significantly more than rivals American Airlines and United Airlines. What’s more, the same source claims Delta was forced to ground a lot more airplanes compared to other organizations.

TechRadar Pro readers can get 60% off Premium Plans at RoboForm now!

TechRadar Pro readers can get 60% off Premium Plans at RoboForm now!

New users can take advantage of RoboForm’s exclusive deal and get 60% off the Premium Plan. With this deal, you can get unlimited password storage, one-click login & autofill, password sharing, two-factor authentication for added protection, cloud backup, and emergency access for trusted contacts. To claim this deal, visit this link and sign up for the Premium Plan to lock in this huge discount.

Preferred partner (What does this mean?)

View Deal

Motion to dismiss

This prompted Delta to sue CrowdStrike claiming the company deployed the update without permission, bypassed Microsoft’s certification process, and failed to properly test the update before release. CrowdStrike admitted the update was flawed but claims Delta’s delayed recovery was due to its own decisions. The lawsuit included multiple claims, such as breach of contract, trespass, negligence, and fraud.

CrowdStrike filed a motion to dismiss, arguing that Delta’s claims were invalid. The argument here is that the claims should be limited by the contract under Georgia’s economic loss rule, which generally prevents tort claims for purely financial losses arising from a contract. Delta says CrowdStrike violated independent duties, such as obligations under trespass laws and cybersecurity standards.

Now, the judge has partially denied CrowdStrike’s motion to dismiss. Namely, trespass and negligence claims are valid, while fraud claims were upheld in part.

The Register spoke to CrowdStrike’s outside counsel, Michael Carlinsky of law firm Quinn Emanuel, who says that the worst-case scenario is the company having to pay “single-digit millions” to Delta. The airline, on the other hand, is “pleased by the ruling”.

Via The Register

You might also like

Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.