Southwest Airlines, the fourth largest airline in the US, is seemingly unaffected by the problematic CrowdStrike update that caused millions of computers to BSoD (Blue Screen of Death) because it used Windows 3.1. The CrowdStrike issue disrupted operations globally after a faulty update caused newer computers to freeze and stop working, with many prominent institutions, including airports and almost all US airlines, including United, Delta, and American Airlines, needing to stop flights.

Windows 3.1, launched in 1992, is likely not getting any updates. So, when CrowdStrike pushed the faulty update to all its customers, Southwest wasn’t affected (because it didn’t receive an update to begin with).

The airlines affected by the CrowdStrike update had to ground their fleets because many of their background systems refused to operate. These systems could include pilot and fleet scheduling, maintenance records, ticketing, etc. Thankfully, the lousy update did not affect aircraft systems, ensuring that everything airborne remained safe and were always in control of their pilots.

  • qisope@lemmy.world
    link
    fedilink
    English
    arrow-up
    230
    ·
    4 months ago

    Or, for your consideration, could it perhaps be because they don’t use crowdstrike?

    • KairuByte@lemmy.dbzer0.com
      link
      fedilink
      English
      arrow-up
      75
      arrow-down
      1
      ·
      4 months ago

      Yeah, what? 3.1 not getting updates has nothing to do with this. Software developed for 3.1 can still be updated. This article is just silly.

        • irinotecan@lemmy.world
          link
          fedilink
          English
          arrow-up
          18
          ·
          4 months ago

          Likely the same reason why banks and other financial institutions still use COBOL and Fortran code written in the 1970s or earlier on archaic mainframes: Top management decided at some point it was too expensive to rewrite everything from scratch in some modern language for modern hardware, so they just limp along with what they have.

          A 16-bit app written for Windows 3.x would almost certainly have to be rewritten for modern, 64-bit Windows.

    • xantoxis@lemmy.world
      link
      fedilink
      English
      arrow-up
      61
      arrow-down
      2
      ·
      4 months ago

      My Linux servers weren’t affected either. I think it’s because of Windows 3.1

      • Monument@lemmy.sdf.org
        link
        fedilink
        English
        arrow-up
        36
        arrow-down
        2
        ·
        4 months ago

        My wife shared this with me yesterday, but I didn’t see it:

        A joke tweet with an attached image of a smart refrigerator. The refrigerator displays a blue screen of death. The tweet reads “I can’t even open my fridge.” Another tweet is replying to it, taking it seriously and indicating they do not embrace smart technology.

        Somebunny is gonna learn those things aren’t windows-based today!

        • Peffse@lemmy.world
          link
          fedilink
          English
          arrow-up
          14
          ·
          4 months ago

          Just yesterday I had that exact “Tech enthusiast vs tech worker” meme play out. I wanted a timer to control the electrical outlet for an aquarium bubbler. Saleswoman really wanted to sell me this “smart” controller with an app that can program the outlet.

          Me:“What happens when the app stops working?”

          (saleswoman is frantically flipping the box over for answers)

          Her:“…maybe…it keeps the existing timer?”

          • Semi-Hemi-Lemmygod@lemmy.world
            link
            fedilink
            English
            arrow-up
            12
            ·
            4 months ago

            I’ve got about six smart plugs that all stopped working because of lack of support. I am no longer interested in smart plugs.

          • Monument@lemmy.sdf.org
            link
            fedilink
            English
            arrow-up
            9
            ·
            4 months ago

            For only way more time and money, you can buy a zigbee smart plug and a vendor agnostic zigbee hub flashed with FOSS, or you can buy a esp-based board, wire it up with a relay, and flash it with something like esphome.

            Sure, it’s way more money and hours of work (cumulatively), but it won’t lose support!

            • 5redie8@sh.itjust.works
              link
              fedilink
              English
              arrow-up
              4
              ·
              4 months ago

              I just bought a bunch of TP Link equipment I knew was compatible and loaded up Home Assistant onto a Raspberry Pi. Best of both worlds

              • SyntaxError@lemmy.world
                link
                fedilink
                English
                arrow-up
                1
                ·
                4 months ago

                I bought some TP link Kasa plugs and a couple of years later when I wanted some more the Kasa brand was discontinued and replaced by Tapo in Sweden. Tapo and Kasa only work with their own separate app so I would have had to have two separate apps even though both were TP link. Never bought any more smart plugs.

                • 5redie8@sh.itjust.works
                  link
                  fedilink
                  English
                  arrow-up
                  1
                  ·
                  4 months ago

                  Aw man, that’s a shame! Kasa is still around in the US, I only got mine a couple months ago. They do seem to offer both, so I wonder if Kasa is on the way out here too

        • Semi-Hemi-Lemmygod@lemmy.world
          link
          fedilink
          English
          arrow-up
          7
          ·
          4 months ago

          My old thermostat was basically two teaspoons of mercury that would expand and contract with the temperature to short out two leads. They didn’t let me keep it when I got a new one, but I got the dumbest one they had.

          • btaf45@lemmy.world
            link
            fedilink
            English
            arrow-up
            3
            ·
            4 months ago

            I got a new HVAC and smart thermostat about a week ago. After researching, I decided to hook thermostat to wifi and download app. Mostly all the app does is duplicate the same functionality that the thermostat controls have. I find it handy to have a remote control for the thermostat.

            OTOH I decided not to hook up a new washing machine to wifi and use app. It duplicated the functionality of the appliance controls also, but there was no point in having remove controls for a washing machine.

            The critical thing is that an appliance needs to be fully functional without needing to use wifi and certainly not a phone app.

    • noisefree@lemmy.world
      link
      fedilink
      English
      arrow-up
      14
      ·
      4 months ago

      I feel like every article out there is missing this and keeps blaming Windows Update vs an update pushed to a specific piece of software by a third-party developer. I get end-users not understanding how things work but tech writers should be more knowledgeable about the subject they write about for a living.

  • yggstyle@lemmy.world
    link
    fedilink
    English
    arrow-up
    141
    arrow-down
    3
    ·
    4 months ago

    Best feature windows 3.1 has:

    … it doesn’t pop up message telling you to upgrade to windows 11.

  • EleventhHour@lemmy.world
    link
    fedilink
    English
    arrow-up
    90
    arrow-down
    1
    ·
    4 months ago

    Windows 3.1 didn’t have the BSOD. It just froze. I remember with Windows NT 4, when we first got the BSOD, being so grateful that Microsoft decided to actually tell us that our computer wasn’t going to recover from the error. Otherwise, we’d just be sitting there, waiting, hoping it would unfreeze itself.

    It never did

    • fury@lemmy.world
      link
      fedilink
      English
      arrow-up
      17
      ·
      4 months ago

      Windows 3.1 did have a BSOD. It wasn’t always fatal, you could try to hit enter to go back to Windows, but most of the time it wasn’t really recoverable, Windows often wouldn’t work right afterwards.

      I ran into them all the time in 3.11 on our 486 which had some faulty RAM (the BSOD would even be scrambled). If we could get back to Windows after that, it’d just be in a zombie state where moving the mouse around would paint stuff over whatever was left on screen, and wouldn’t respond to clicks or keypresses.

      Fun times.

    • JasonDJ@lemmy.zip
      link
      fedilink
      English
      arrow-up
      8
      ·
      edit-2
      4 months ago

      Are you sure? I remember a long time ago being able to trigger a BSOD by opening Windows Calculator and dividing any number by 0. And I’m pretty sure that was 3.1 or 3.11.

      In fact, I remember being able to change the color of the BSOD.

      • EleventhHour@lemmy.world
        link
        fedilink
        English
        arrow-up
        12
        arrow-down
        2
        ·
        edit-2
        4 months ago

        As another user mentioned, the BSOD first came in Windows NT 3.51.

        But it definitely wasn’t in Windows 3.1 or Windows 3.11

        • Psythik@lemmy.world
          link
          fedilink
          English
          arrow-up
          1
          arrow-down
          1
          ·
          edit-2
          4 months ago

          The other user is wrong. I clearly remember the BSoD in Windows 3.1. You can find it easily with a simple web search. Here it is: Here it is.

          Hell, there were even memes of it:

          Edit: I provided proof and was still downvoted lol. This place is quickly turning into reddit.

    • Psythik@lemmy.world
      link
      fedilink
      English
      arrow-up
      3
      arrow-down
      2
      ·
      4 months ago

      Windows 3.1 absolutely did have a BSoD, and as the other person mentioned, sometimes you could press a key and the OS would recover. More often than not you needed to reboot, though. Our family PC would BSoD all the damn time, and I had to put up with it throughout a good portion of my early childhood until my dad finally bought a Windows 98 SE PC. But that OS also had its fair share of instability issues. The “illegal operation” error message was a near-daily occurance.

      It wasn’t until we got our first NT-based machine (XP) that we stopped having constant issues with Windows. The DOS-based Windows OSes were notoriously unstable.

    • Petter1@lemm.ee
      link
      fedilink
      English
      arrow-up
      1
      arrow-down
      1
      ·
      4 months ago

      😄it still do that on my over 20y old 2gig RAM Arch KDE on wayland macBookPro 🤔

  • phoneymouse@lemmy.world
    link
    fedilink
    English
    arrow-up
    82
    arrow-down
    3
    ·
    4 months ago

    The fact that they’re running 3.1 is not something to be proud of. They’re probably extremely vulnerable to any other attack.

        • RustyHeater@lemmy.world
          link
          fedilink
          English
          arrow-up
          34
          arrow-down
          4
          ·
          4 months ago

          Microsoft’s Wolverine for the TCP stack was not available until Windows 3.11. An argument could be made that these systems are defacto air-gapped as they cannot communicate with modern networking.

          • mosiacmango@lemm.ee
            link
            fedilink
            English
            arrow-up
            26
            ·
            edit-2
            4 months ago

            Youre assuming the article is using “windows 3.1” to mean the exact version of the OS, instead of just the proper name of the OS overall. That probally unlikley.

            Since lacking a network stack tends to limit usability, unless the systems are intentionally air gapped they likely are on windows 3.1.1 or later. Based on Southwest extensively documented and decades long IT neglect that landed its current COO in front of Congress for a previous days long outage, i doubt the systems are intentionally airgapped, as that implies a working and well funded IT department.

            • areyouevenreal@lemm.ee
              link
              fedilink
              English
              arrow-up
              1
              ·
              4 months ago

              Just because it doesn’t have TCP/IP doesn’t mean there isn’t networking. Networks existed before the Internet and its Internet Protocol after all. It wouldn’t be so much air gapped as so archaic that only the most targeted attacks would work, and only if there is an infected PC acting as an intermediate between the Internet and ye olde network. Chances are it was never connected to the modern Internet as the technologies just aren’t compatible.

              • Jagger2097@lemmy.world
                link
                fedilink
                English
                arrow-up
                2
                ·
                4 months ago

                Old doesn’t mean secure. Those old systems have had decades since the last security patch. Even then computer security was barely a consideration for the developers.

                • areyouevenreal@lemm.ee
                  link
                  fedilink
                  English
                  arrow-up
                  2
                  ·
                  4 months ago

                  I am not saying it is, normally old systems are the least secure. The bit you’re not getting is that this system is almost certainly air gapped, just not by choice. It can’t work with modern networks. It can’t work with modern viruses. Any exploit a modern hacker would think to use probably doesn’t exist yet. It’s a bit like trying to break someone’s car by putting sugar in the fuel, except they ride a horse. Do you get it yet?

      • shastaxc@lemm.ee
        link
        fedilink
        English
        arrow-up
        5
        ·
        4 months ago

        Old programming languages are fine. Hard to maintain though. But they all compile down to machine code at the end of the day.

        Old operating systems on the other hand means they are vulnerable to all kinds of exploits that have been discovered in that OS over the past few decades. That’s a much bigger problem.

      • bitwolf@lemmy.one
        link
        fedilink
        English
        arrow-up
        6
        ·
        4 months ago

        Spirit is already a non starter for me because my legs don’t fit in the seat haha

  • Blaster M@lemmy.world
    link
    fedilink
    English
    arrow-up
    59
    arrow-down
    1
    ·
    4 months ago

    This is the “can’t get a Word Document macro virus because I use the Corel WordPerfect Document type” kind of energy.

  • floofloof@lemmy.ca
    link
    fedilink
    English
    arrow-up
    56
    arrow-down
    2
    ·
    4 months ago

    One X user suggested that the company switch to Windows XP—it’s also no longer updated, and it can run Windows 3.1 applications via compatibility mode.

    Maybe that was a joke, but if anything that would reduce their security. Windows 3.1 and 95 are old enough that they can’t even run most stuff from the last two and a half decades, which probably protects them. XP is just new enough, and plenty old enough, to be very risky.

    • jabathekek@sopuli.xyz
      link
      fedilink
      English
      arrow-up
      27
      ·
      4 months ago

      Reminds me of an episode of Ghost in the Shell where a hacker in a hyper-advanced cyberised society was using floppy disks as a storage medium because they were so slow.

      • FaceDeer@fedia.io
        link
        fedilink
        arrow-up
        28
        ·
        4 months ago

        One of the background details I liked in Ghost in the Shell was how the high-end data analysts and programmers employed by the government did their work using cybernetic hands whose fingers could separate into dozens of smaller fingers to let them operate keyboards extremely quickly. They didn’t use direct cybernetic links because that was a security vulnerability for their brains.

  • cmnybo@discuss.tchncs.de
    link
    fedilink
    English
    arrow-up
    43
    ·
    4 months ago

    Holy crap, they are serious. I though I was on [email protected] for a minute. I sure hope none of those computers are connected to the internet. There’s a massive number of vulnerabilities in windows 3.1 and windows 95.

        • palordrolap@kbin.run
          link
          fedilink
          arrow-up
          3
          arrow-down
          1
          ·
          4 months ago

          Yep. I remember - despite the fact it was old even then - building and connecting a Win 3.11 machine to a TCP/IP office network as a proof of concept back in 2000 or so. I might have even installed Netscape on it. I don’t remember clearly now, but I assume the parts for the computer came out of the spares pile, and were soon recycled back into other machines.

    • Lumisal@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      4 months ago

      But how many people are looking for Windows 3.1 anything today?

      Well I suppose now there might be more

  • BingBong@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    32
    arrow-down
    1
    ·
    4 months ago

    Is this actually confirmed anywhere though? I keep seeing it repeated and the only ‘source’ is a ?xeet? .

    • souless@lemmy.world
      link
      fedilink
      English
      arrow-up
      6
      arrow-down
      3
      ·
      4 months ago

      Yes, the update bricked the systems, meaning the software that powers their business was unaccessible, reinstalling any version of windows would not restore the software built on top of the os. Thus why it became a huge ordeal rather than a simple update push from Microsoft, a bricked system can’t receive a fix remotely.

  • notannpc@lemmy.world
    link
    fedilink
    English
    arrow-up
    26
    arrow-down
    3
    ·
    4 months ago

    Maybe don’t pay a company to install a rootkit on your critical infrastructure?

    • henfredemars@infosec.pub
      link
      fedilink
      English
      arrow-up
      23
      ·
      4 months ago

      Just open up your critical infrastructure to the public Internet and you’ll get rootkits for free.

  • Blackmist@feddit.uk
    link
    fedilink
    English
    arrow-up
    16
    ·
    4 months ago

    If they still use Windows 3.1 and it works, then I do have to wonder about the rest of their security setup.

    • Toribor@corndog.social
      link
      fedilink
      English
      arrow-up
      5
      ·
      4 months ago

      Windows 3.1 can’t use modern versions of tls which means it’s effectively impossible to network it securely.

      • Blackmist@feddit.uk
        link
        fedilink
        English
        arrow-up
        7
        ·
        4 months ago

        You just know there’s an SMB share somewhere with no password, where files filled with unencrypted customer details get dumped for processing by an ancient AS400 server.

    • rottingleaf@lemmy.world
      link
      fedilink
      English
      arrow-up
      4
      ·
      4 months ago

      I love such things in Star Wars too.

      And not sure whether there’s been a plot play with the Katana fleet (all ships were slaved to the flagship, all crews including that of the flagship caught a virus causing them to go mad and die, and while they were still alive, the fleet jumped in unknown direction ; it was found later and ships reused by sides of the civil war) where its obsolete electronics and software were actually an advantage security-wise.

      Though in that universe it seems that interfacing and integrating wildly different systems is more or less a normal thing, since there are lots of planets, lots of races and some things still in operation are few centuries old.

  • Kazumara@discuss.tchncs.de
    link
    fedilink
    English
    arrow-up
    16
    arrow-down
    1
    ·
    4 months ago

    That makes fuckall sense.

    Windows 3.1 not being updated by Microsoft has nothing to do with Crowdstrike rolling out an update to their Falcon Sensor software including a file with 42kB of zeroes.

    On Windows 3.1 you probably can’t run Falcon Sensor, so in that way it could be related. But it seems way more likely that Southwest Airlines simply didn’t use Falcon Sensor on their normal Windows 10 or whatever clients.

    There are probably competitors to Crowdstrike, at least some companies would be customers to one of them.