• deranger@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    44
    ·
    edit-2
    8 hours ago

    Why would the TSA have anything to do with Delta’s IT operations?

    In March 2023, the TSA added a cybersecurity emergency amendment to its cybersecurity programs. The amendment required airlines like Delta to develop “policies and controls to ensure that operational technology systems can continue to safely operate in the event that an information technology system has been compromised,” CrowdStrike’s complaint said.

    Guess that’s why.

    • aard@kyu.de
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 hour ago

      So CrowStrikes strategy is “you installed CrowStrike while TSA told you not to install it, as was clearly proven by us taking down your network, so we’re not at fault”?

    • Nougat@fedia.io
      link
      fedilink
      arrow-up
      25
      ·
      7 hours ago

      That’s some serious scope creep there by TSA. I’m quite sure that airlines’ business continuity is wholly unrelated to transportation security.

    • AtHeartEngineer@lemmy.world
      link
      fedilink
      English
      arrow-up
      6
      arrow-down
      2
      ·
      8 hours ago

      I think it’s pretty reasonable for a company as big as delta to wait a little bit to see how a patch rolls out before upgrading.

      • kandoh@reddthat.com
        link
        fedilink
        English
        arrow-up
        5
        ·
        7 hours ago

        Hackers are less of a threat than Microsoft’s attempts at protecting us from hackers