CrowdStrike Disputes Negligence Claims in Letter to Delta Attorney

A Delta A220 (Credit: AirlineGeeks/William Derrickson]

Temperatures are rising in the blame game between software company CrowdStrike and Delta Air Lines over responsibilities for the massive IT outage that impacted air traffic across the U.S. on July 19.

According to a letter posted on X by aviation reporter David Slotnick on Sunday, CrowdStrike attorney Michael Carlinsky told Delta attorney David Boies that it was misleading to say CrowdStrike was responsible for Delta’s IT decisions in response to the outage. Boies was reportedly retained by Delta to seek damages from both CrowdStrike and Microsoft after airline CEO Ed Bastian said the outages cost the company $500 million.

“CrowdStrike reiterates its apology to Delta, its employees, and its customers, and is empathetic to the circumstances they faced,” the letter from Carlinsky states. “However, CrowdStrike is highly disappointed by Delta’s suggestion that CrowdStrike acted inappropriately and strongly rejects any allegation that it was grossly negligent or committed willful misconduct with respect to the Channel File 291 incident. Your suggestion that CrowdStrike failed to do testing and validation is contradicted by the very information on which you rely from CrowdStrike’s Preliminary Post Incident Review.”

The letter states that CrowdStrike has worked tirelessly to help its customers restore impacted systems and resume services to their customers. Carlinsky states in the letter that within hours of the incident, CrowdStrike reached out to Delta to offer help and make sure the airline was aware of an available fix.

READ MORE: IT Outage Cost Delta Air Lines $500 Million

Additionally, Carlinsky says that CrowdStrike’s CEO personally reached out to Delta’s CEO to offer on-site assistance but received no response. After following up on the offer for on-site support, Carlinsky said Delta declined the offer for help.

“Delta’s public threat of litigation distracts from this work and has contributed to a misleading narrative that CrowdStrike is responsible for Delta’s IT decisions and response to the outage,” the letter continues. “Should Delta pursue this path, Delta will have to explain to the public, its shareholders, and ultimately a jury why CrowdStrike took responsibility for its actions— swiftly, transparently, and constructively-while Delta did not.”

Carlinsky argues in the letter that Delta will have to explain why its competitors facing similar challenges all restored normal operations faster and why the airline turned down free on-site help from CrowdStrike. He also states that any liability by CrowdStrike is contractually capped in the single-digit millions.

READ MORE: GA, Private Aviation Dodge Worst of Cyber Outage Impact

Carlinsky stated that CrowdStrike demands Delta preserve all documents, records, and communications of any kind in the possession of the airline, including:

Delta’s response to the Channel File 291 incident.
Delta’s emergency backup, disaster recovery, and IT business continuity plans, and any related testing of those plans.
All assessments of Delta’s IT infrastructure, including any gaps and remediation recommendations, for the last five years, including in the wake of the Channel File 291 incident.
All decisions to upgrade or not upgrade Delta’s IT infrastructure in the last five years.
All scripts and software that Delta has deployed before and after the Channel File 291 incident to address possible Windows group policy corruption issues across the IT estate.
All system event logs for the weeks preceding and succeeding the Channel File 291 incident.
All encryption-level software that Delta deployed on all its IT infrastructure and the management of this software.
All technology and operating systems that Delta utilizes to assign workflow, routes, crews, flight schedules, etc. and any information, documents, or analysis on how that technology interacts with any software that Delta employs on its IT infrastructure.
Any data loss following the Channel File 291 incident related to Delta’s workflow routes, crew and flight schedules, and all communications with crew members following the Channel File 291 incident.
Delta’s response and recovery to any previous IT outages in the past five years.

“As I am sure you can appreciate, while litigation would be unfortunate, CrowdStrike will respond aggressively, if forced to do so, in order to protect its shareholders, employees, and other stakeholders,” the letter states.

Editor's Note: This article first appeared on AirlineGeeks.com.

airline IT outage AirlineGeeks Aviation News CrowdStrike Delta Air Lines Latest from Flying

Caleb RevillAuthor

Caleb Revill is a journalist, writer and lifelong learner working as a Junior Writer for Firecrown. When he isn't tackling breaking news, Caleb is on the lookout for fascinating feature stories.