00:00On 18th of November 2025, Cloudflare experienced a significant global outage that affected a vast
00:05part of the internet ecosystem. The incident began around 1120 UTC when Cloudflare's network
00:11started facing severe failures in delivering core network traffic. This led to widespread
00:16errors on many popular websites and services including X, ChatGPT, Spotify and Shopify as
00:21well as essential public organizations like transit systems and emergency management offices
00:27in major cities. Now the cause of this outage was not due to a cyber attack as initially
00:31suspected but stemmed from a technical fault within Cloudflare's systems. Now the problem
00:36was traced back to a change in one of their database permissions which inadvertently caused
00:41the database to output incorrect data into a feature file used by Cloudflare's bot management
00:46system. Now this caused the software to fail triggering a cascade of errors across their
00:51network. The failure impacted several services. Users faced HTTP 5XX errors which indicated server
00:58issues and experienced increased response latency. Now authentication services vital for user logins
01:04and access to websites were also disrupted leading to further frustration. Now Cloudflare's team
01:10initially thought that this could be a cyber attack but investigations confirmed that it was
01:15purely a technical issue caused by a misconfiguration during routine maintenance. By late morning Cloudflare
01:22began working. They stopped the propagation of the bad configuration file and rolled back to an earlier
01:28stable version of their database. Over the next few hours core systems were gradually restored and full
01:33service was recovered around 5.06 pm UTC bringing relief to millions of internet users and businesses worldwide.
01:41Now the outage demonstrated how dependent the world has become on Cloudflare's infrastructure which
01:46connects roughly a fifth of all websites today. Its role as a gatekeeper that speeds up and secures
01:52internet traffic makes any failure highly impactful. Now expert James Knight who helps companies identify
01:59online vulnerabilities have expressed suspicion towards the incident's origins. In September the
02:04company announced that they had thwarted the largest ever distributed denial of service that is
02:10DDOS attack in which criminals bombarded Cloudflare's systems with a battery of requests trying to make
02:16their websites keel over. Now that attack saw 11.5 terabytes per second of data which is equivalent to
02:22downloading Netflix's entire content library per second hurled at Cloudflare for 35 seconds and that
02:29digital assault came just three months after the previous record DDOS attack of 7.3 terabytes per second.
02:36The expert said that it could be the Chinese trying to bring down companies to affect their profit margins
02:42or Russia which is obviously interested in striking back against those involved in Ukraine.
02:47He says that there is no question about it. Cyber warfare units are really absolutely incredible. He
02:52added if this were a cyber attack which we don't have evidence of at the moment then what is the
02:59motivation? It is either monetary or power at the end of the day. Although Cloudflare has eliminated the
03:04immediate cause questions remain about how to better prevent such failures in the future.
03:10The event was the worst outage for Cloudflare since 2019 and underscored the importance of
03:15resilience in digital infrastructure. This incident also raised alarms about the fragility of the
03:20internet highlighting how a single misstep in a crucial service provider can cause a domino effect
03:26disrupting communication, commerce and everyday life worldwide.
Comments