The fallout continues from the massive IT outage caused by a Crowdstrike software update in July. Delta is now asking for damages to cover over $500 million in losses, along with litigation costs and punitive damages.
In July after the update, the airline canceled 7,000 flights, reduced revenue by $380 million and brought $170 million in costs. Delta said Crowdstrike’s software flaws reached its computers even though it had disabled automatic updates. Not long after the outage, Delta hired David Boies of the Boies Schiller Flexner law firm to seek damages against Crowdstrike and Microsoft.
The world will be watching this and other lawsuits that put vendors in the hotseat for faulty software and updates.
Were you or your customers impacted by the Crowdstrike outage? And do you have any news or tips for this column? If so please send them to [email protected].
Today’s MSSP Update
1. UnitedHealth Group cyberattack impact - Another huge crisis this year came in the form of the UnitedHealth Group cyberattack on Feb. 21 and impacted hundreds of pharmacies. Last week UnitedHealth confirmed to the U.S. Department of Health and Human Services (HHS) that 100 million Americans were affected by the breach, which is the largest on record, according to SCWorld.
2. Virtual patching for SAP systems - SecurityBridge, which provides a Cybersecurity Command Center for SAP, is offering a “Virtual Patching” feature that provides automated protection for unpatched SAP systems starting on SAP Patch Day. This allows systems to be safeguarded from the first moment a vulnerability is disclosed, the company said. The feature integrates with SecurityBridge’s existing Patch Management and Threat Detection modules.
3. MXDR partnership - NTT Data, a global digital business and IT services provider has expanded its partnership with Palo Alto Networks to bring managed extended detection response to NTT’s customers, powered by Palo Alto Networks Cortex XSIAM, a security operations center (SOC) platform. Palo Alto Networks said Cortex XSIAM is an AI-driven platform that transforms the SOC by harnessing the power of AI and automation to simplify operations, stop threats at scale, and accelerate incident remediation.
4. “Black Basta” shifts TTPs - ReliaQuest has a new report indicating how it has observed a shift in tactics, techniques, and procedures (TTPs) being used by the “Black Basta” ransomware group. Among the changes – Black Basta is now using Microsoft Teams chat messages to communicate with targets and send malicious QR codes. ReliaQuest reports this is a rapidly evolving threat, affecting multiple sectors and geographies.
5. Browser security - Keeper Security as introduced updates to its patented KeeperFill browser extension that gives users more control, flexibility and security when managing credentials across devices. Updates include integration of a passphrase generator, a refreshed interface for the password generator, and shortcuts to help users access Keeper’s web vault directly from the browser extension.
6. SASE partner awards - SASE provider Cato Networks named the winners of its inaugural Americas Partner Awards at the 2024 Cato Networks Americas Partner Summit in Las Vegas. Cato Networks named Matrix Networks as MSP Partner of the Year.
7. DNS security, PSA integration - DNS-layer security and content filtering company DNSFilter is integrating with six professional services automation (PSA) platforms -- ConnectWise Manage, Datto Autotask, HaloPSA, SyncroMSP, Kaseya BMS, and Pulseway PSA. The company will showcase the integrations at Kaseya DattoCon this week and ConnectWise’s IT Nation next week.
