- Shares of CrowdStrike plummet after Delta Air Lines demands compensation for IT outage.
- The cybersecurity failure led to widespread disruptions, affecting thousands of flights.
OUR TAKE
In light of the recent events, it is crucial for businesses to evaluate their cybersecurity strategies and ensure they are not overly reliant on any single platform. The CrowdStrike incident underscores the potential risks and the importance of maintaining a resilient and adaptable cybersecurity posture to safeguard against future disruptions.
—Doris Du, BTW reporter
What happened
Shares of CrowdStrike plunged over 4% in premarket trading on Tuesday following a report that Delta Air Lines plans to seek compensation from the cybersecurity firm. The fallout stems from a global IT outage that severely disrupted industries, including airlines, with Delta cancelling over 6,000 flights since July 19. The outage was traced back to CrowdStrike’s “Falcon Sensor” software, which caused Microsoft Windows to crash with the infamous “Blue Screen of Death.”
Delta has enlisted a law firm and intends to seek compensation from both CrowdStrike and Microsoft, according to CNBC. The outage has led to a significant decline in CrowdStrike’s stock value, which had doubled in 2023 but has since dropped over 24%, wiping out more than $20 billion in market valuation.
Also read: Is AI a better measure for cyber security?
Also read: Cryptography in cyber security and its application
Why it’s important
The IT outage has had a profound impact, not only on Delta Air Lines but also on CrowdStrike’s reputation and financial standing. A survey by Evercore ISI revealed that many clients are considering slowing or pausing their spending on CrowdStrike services, with expectations of monetary relief such as discounts, service revenue credits, or free products.
Feedback from clients suggests that CrowdStrike has already begun discussing these concessions with its customers. Analysts at Needham highlighted that the damages from the outage have led to decreased customer confidence in relying heavily on singular cybersecurity platforms due to the concentration risk this choice introduces. The frustration among CrowdStrike customers was palpable, with many describing the outage as a “total nightmare” during one of the busiest travel and shopping periods of the year.
Opinion: A cautionary tale in cybersecurity
The incident serves as a stark reminder of the fragility and critical importance of cybersecurity in our interconnected world. It is a cautionary tale that emphasises the need for diversified and robust cybersecurity measures to prevent such catastrophic disruptions. The fallout from the outage illustrates the broader implications of a single point of failure in critical infrastructure, highlighting the necessity for continuous improvement and vigilance in cybersecurity practices.