On July 19, 2024, a global IT outage caused widespread disruption across various industries, resulting in numerous flight cancellations and delays. The root cause of the issue was identified as a defective update for Microsoft Windows hosts by CrowdStrike, a cybersecurity firm. This update triggered a system crash on impacted systems running Falcon sensor for Windows version 7.11 and above.
The affected software, named Channel File 291, controls how Falcon evaluates named pipe execution on Windows systems. Named pipes are used for communication in Windows and the update targeted newly observed, malicious named pipes being used by common C2 frameworks in cyberattacks. However, the logic error in Channel File 291 resulted in an operating system crash instead.
The outage affected multiple airlines such as United Airlines, Delta Air Lines, and American Airlines. As of July 20, 2024 at 9 a.m. ET, there were over 980 flights canceled and nearly 1,400 delays.
Delta Air Lines issued a waiver allowing all passengers traveling on July 19 to rebook their flights without additional fees. United Airlines also issued a waiver for select airports, while Spirit Airlines allowed customers to change their flights at no extra charge.
The Federal Aviation Administration (FAA) and the Department of Transportation (DOT) have rules regarding controllable delays by the airlines. Passengers affected by these cancellations or delays should contact their respective airlines for compensation policies.