Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Crowdstrike is not handling critical infrastructure. Delta is.

The reality is the industry wants its cake and eat it too. No one forced Delta to buy a software which could force upgrades in their production fleet. They're a billion dollars company, and should put their big boys pants on.



Am I right in thinking Delta could have chosen when the update was distributed to its infrastructure?

In my mind, a quick test run of the update on a VM before letting it roll out globally would have revealed the BSOD boot loop.


AFAIK crowdstrike can push updates at any time at any host. There are staging areas they may use, but don't have to (particularly for definitions updates).

Crowdstrike should have done a better job, but Delta chose them (to offload the responsibility and work) and now they're claiming foul. They knew the risk. This is a classic executive play of claiming the fault lies in the consultants/vendor and taking no responsibility.


Just shows how many planes would be falling out of the sky if there weren't federally mandated safety systems, secondary hydraulic circuits, and failover hot spares at nearly every layer of the stack. Delta should've had backup systems, just like their planes do.


I'm not sure how "you should never use CrowdStrike" is an argument in CrowdStrike's favor.

I guess you're saying they shouldn't have outsourced in the first place? Which does sound like the correct conclusion in this case...


I'm not trying to defend CrowdStrike, but pointing to the fact Delta is the one maintaining and owning critical infrastructure and the executives trying to shift this responsibility onto someone else is the reason this happened in the first place. :)


Okay, good to know. I always thought those embedded systems would be a real pain to maintain.


No. The update was forced


> No one forced Delta to buy a software which could force upgrades in their production fleet.

Except this update was one from CrowdStrike that would ignore Delta's stated update policy.

And they literally said "Oh, yeah, we can configure some updates to bypass your policy". I wonder how well this was communicated to those customers.


Did crowdstrike force delta to accept running what essentially is a permanent RCE in their production fleet? You do not buy a software that is capable to do that and you put the fact it's not capable of doing that in the contract.

The update policy may work for the client version updates, but not for the "policy definition", otherwise delta won't get the sweet "all vulns mitigated with a 4h SLA" they crave.


I mean. Delta is also an airline, and if airline's love to do one thing it's to point fingers and shift blame. Mostly such that they don't reimburse you what you are legally owed if they jam you up, but also it seems throughout.


> Crowdstrike is not handling critical infrastructure.

lol.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: