The critical React vulnerability has been exploited in the wild by Chinese and other threat actors.
The post Cloudflare Outage Caused by React2Shell Mitigations appeared first on SecurityWeek.
This latest event follows hot on the heels of Nov. 18, when Cloudflare was hit by a global outage for several hours.
The post Cloudflare Suffers Global Outage appeared first on TechRepublic.
This latest event follows hot on the heels of Nov. 18, when Cloudflare was hit by a global outage for several hours.
The post Cloudflare Suffers Global Outage appeared first on TechRepublic.
A data center cooling failure at CME Group’s Chicago site froze global derivatives trading for hours, exposing vulnerabilities in financial infrastructure.
The post Global Futures Reopen After CME Suffers Data Center Cooling Failure appeared first on TechRepublic.
A data center cooling failure at CME Group’s Chicago site froze global derivatives trading for hours, exposing vulnerabilities in financial infrastructure.
The post Global Futures Reopen After CME Suffers Data Center Cooling Failure appeared first on TechRepublic.
When a Cloudflare outage disrupted large numbers of websites and online services yesterday, the company initially thought it was hit by a “hyper-scale” DDoS (distributed denial-of-service) attack.
“I worry this is the big botnet flexing,” Cloudflare co-founder and CEO Matthew Prince wrote in an internal chat room yesterday, while he and others discussed whether Cloudflare was being hit by attacks from the prolific Aisuru botnet. But upon further investigation, Cloudflare staff realized the problem had an internal cause: an important file had unexpectedly doubled in size and propagated across the network.
This caused trouble for software that needs to read the file to maintain the Cloudflare bot management system that uses a machine learning model to protect against security threats. Cloudflare’s core CDN, security services, and several other services were affected.
© Getty Images | NurPhoto
A Cloudflare outage caused large chunks of the Internet to go dark Tuesday morning, temporarily impacting big platforms like X and ChatGPT.
“A fix has been implemented and we believe the incident is now resolved. We are continuing to monitor for errors to ensure all services are back to normal,” Cloudflare’s status page said. “Some customers may be still experiencing issues logging into or using the Cloudflare dashboard.”
The company initially attributed the widespread outages to “an internal service degradation” and provided updates as it sought a fix over the past two hours.
© NurPhoto / Contributor | NurPhoto
High-profile services affected include ChatGPT, Sora, Shopify, and Elon Musk’s social media platform X.
The post Cloudflare Outage Hits Major Websites appeared first on TechRepublic.
High-profile services affected include ChatGPT, Sora, Shopify, and Elon Musk’s social media platform X.
The post Cloudflare Outage Hits Major Websites appeared first on TechRepublic.
We make no claims to be an expert on anything, but we do know that rule number one of working with big, expensive, mission-critical equipment is: Don’t break the big, expensive, mission-critical equipment. Unfortunately, though, that’s just what happened to the Deep Space Network’s 70-meter dish antenna at Goldstone, California. NASA announced the outage this week, but the accident that damaged the dish occurred much earlier, in mid-September. DSS-14, as the antenna is known, is a vital part of the Deep Space Network, which uses huge antennas at three sites (Goldstone, Madrid, and Canberra) to stay in touch with satellites and probes from the Moon to the edge of the solar system. The three sites are located roughly 120 degrees apart on the globe, which gives the network full coverage of the sky regardless of the local time.
Losing the “Mars Antenna,” as DSS-14 is informally known, is a blow to the DSN, a network that was already stretched to the limit of its capabilities, and is likely to be further challenged as the race back to the Moon heats up. As for the cause of the accident, NASA explains that the antenna was “over-rotated, causing stress on the cabling and piping in the center of the structure.” It’s not clear which axis was over-rotated, but based on some specs we found that say the azimuth travel range is ±265 degrees “from wrap center,” we suspect it was the vertical axis in the base. It sounds like the azimuth went past that limit, which wrapped the swags of cables and hoses that run the antenna tightly, causing the damage. We’d have thought there would be a physical stop of some sort to prevent over-rotation, but then again, running a structure that big up against a stop would be very much an “irresistible force, immovable object” scenario. Here’s hoping they can get DSS-14 patched up quickly and back in service.
Speaking of having a bad day on the job, we have to take pity on these Russian engineers for the “demo hell” they went through while revealing the country’s first AI-powered humanoid robot. AIdol, as the bot is known, seemed to struggle from the start, doddering from behind some curtains like a nursing home patient with a couple of nervous-looking fellows flanking it. The bot paused briefly before continuing its drunk-walk, pausing again to deliver a somewhat feeble wave to the crowd before entering the terminal stumble and face-plant part of the demo. The bot’s attendants quickly dragged it away, leaving a pile of parts on the stage while more helpers tried — and failed — to deploy a curtain to hide the scene. It was a pretty sad scene to behold, made worse by the choice of walk-out music (Bill Conti’s iconic “Gonna Fly Now,” better known as the theme from Rocky).
We just noticed that pretty much everything we have to write about this week has a “bad day at work” vibe to it, so to continue on with that theme, witness this absolutely disgusting restoration of a GPU that spent way too many years in a smoker’s house. The card, an Asus 9800GT Matrix, is from 2008, so it may have spent the last 17 years getting caked with tar and nicotine, along with a fair amount of dust and perhaps cat hair, from the look of it. Having spent way too much time cleaning TVs similarly caked with grossness most foul, we couldn’t stomach watching the video of the restoration process, but it’s available in the article if you dare.
And the final entry in our “So you think your job sucks?” roundup, behold the poor saps who have to generate training data for AI-powered domestic robots. The story details the travails of Naveen Kumar, who spends his workday on simple chores such as folding towels, with the twist of doing it with a GoPro strapped to his forehead to capture all the action. The videos are then sent to a U.S. client, who uses them to develop a training model so that humanoid robots can eventually copy the surprisingly complex physical movements needed to perform such a mundane task. Training a robot is all well and good, but how about training them how to move around inside a house made for humans? That’s where it gets really creepy, as an AI startup has partnered with a big real estate company to share video footage captured from those “walk-through” videos real estate agents are so fond of. So if your house has recently been on the market, there’s a non-zero chance that it’s being used to train an army of domestic robots.
And finally, we guess this one fits the rough-day-at-work theme, but only if your job is being a European astronaut, who may someday be chowing down on protein powder made from their own urine. The product is known as Solein — sorry, but have they never seen the movie Soylent Green? — and is made via a gas fermentation process using microbes, electricity, and air. The Earth-based process uses ammonia as a nitrogen source, but in orbit or on long-duration deep-space missions, urea harvested from astronaut pee would be used instead. There’s no word on what Solein tastes like, but from the look of it, and considering the source, we’d be a bit reluctant to dig in.
Alaska Airlines said Friday it has hired global consulting firm Accenture to conduct a full audit of its technology systems, part of a broader push to improve reliability after two major IT outages in recent months. The review will include a top-to-bottom examination of the airline’s systems, standards, and processes.
The move follows a major outage last week that grounded flights for eight hours. The Seattle-based company said more than 49,000 passengers had their travel plans disrupted and more than 400 flights were canceled across Alaska Airlines and its subsidiary Horizon Air. The outage was severe enough to postpone the company’s scheduled quarterly earnings call.
Alaska said the outage was due to a failure at its primary data center and was not related to a cybersecurity incident.
In a new regulatory filing, the airline said it does not plan on rescheduling its third quarter call and will provide updated guidance for its fourth quarter in early December, “once the full financial impact of the recent IT disruptions is understood.”
A separate July outage, caused by a failure of a “critical piece of hardware” at Alaska’s data centers, was expected to reduce earnings by about $0.10 per share, or roughly $12 million.
Alaska said it has boosted IT infrastructure spending by nearly 80% since 2019, investing in redundant data centers and migrating more guest-facing systems to the cloud.
The airline operates a hybrid infrastructure, blending its own data centers with third-party cloud platforms, according to an interview last year with Vikram Baskaran, Alaska’s vice president of IT.
Alaska began migrating workloads to Microsoft Azure around 2015 and continues to maintain its own data centers for critical workloads, according to the interview.
Earlier this week, Alaska had another IT disruption, but this time blamed Microsoft Azure, which itself had an outage that temporarily disrupted operations for customers worldwide. The disruption impacted Alaska’s subsidiary Hawaiian Airlines.
An outage on Microsoft’s Azure cloud services Wednesday morning disrupted operations for customers worldwide including Alaska Airlines, Xbox users and Microsoft 365 subscribers.
The incident came just ahead of Microsoft’s quarterly earnings call today and follows last week’s outage at Amazon Web Services and a failure of Alaska Airlines’ own data center technology.
The latest outage struck at 9 a.m. PT, according to Microsoft, when the system “began experiencing Azure Front Door (AFD) issues resulting in a loss of availability of some services. We suspect that an inadvertent configuration change as the trigger event for this issue.
“We are taking several concurrent actions: Firstly, where we are blocking all changes to the AFD services, this includes customer configuration changes as well. At the same time, we are rolling back our AFD configuration to our last known good state,” the company stated. “As we rollback we want to ensure that the problematic configuration doesn’t re-initiate upon recovery.”
Alaska Airlines posted on X at 10:33 a.m., explaining that the Azure outage was disrupting systems including their website function. Passengers flying on Alaska and Hawaiian airlines who were unable to check-in online were directed to airline agents to receive their boarding passes.
“We apologize for the inconvenience and appreciate your patience as we navigate this issue,” the post said.
Microsoft did not indicate when the outage would be resolved.
“We do not have an ETA for when the rollback will be completed, but we will update this communication within 30 minutes or when we have an update,” the company posted at 10:51 a.m.
UPDATE: At 12:22 p.m. the company shared an update stating it had deployed the “last known good” configuration of the impacted system and customers should start seeing improvements. “[W]e anticipate full mitigation within the next four hours as we continue to recover nodes …. We will provide another update on our progress within two hours, or sooner if warranted,” Microsoft added.
Days after its outage last week, AWS offered a detailed explanation of the event, which was caused by a cascading failure triggered by a rare software bug in one of the company’s most critical systems. The disruption impacted sites and online services around the world.
Alaska Airlines attributed its recent outage to a failure at its primary data center. The company operates a hybrid infrastructure, blending its own data centers with third-party cloud platforms. The incident disrupted travel for more than 49,000 passengers.
Alaska Airlines already tried to shore up its IT infrastructure after an outage in July forced the Seattle-based company to ground flights across the country.
Apparently, it wasn’t enough.
Alaska was hit with another major outage on Thursday, leading to a ground stop that lasted eight hours and resulted in more than 400 flights canceled across Alaska Airlines and its subsidiary Horizon Air.
In a new update Friday afternoon, the company said more than 49,000 passengers had their travel plans disrupted.
The outage was severe enough to postpone the company’s scheduled quarterly earnings call Friday. Shares were down more than 6%.
Alaska said it was still working to normalize operations.
The company has blamed the outage on a failure at its primary data center. It was not due to a cybersecurity incident.
“Following a similar disruption earlier this year, we took action to harden our systems, but this failure underscores the work that remains to be done to ensure system stability,” the company said in its latest update. “We are immediately bringing in outside technical experts to diagnose our entire IT infrastructure to ensure we are as resilient as we need to be. ”
It added: “The reliability of our technology is fundamental to our ability to serve guests and get them to where they need to be.”
Alaska said its July outage was caused by a failure of a “critical piece of hardware” at its data centers.
The airline operates a hybrid infrastructure, blending its own data centers with third-party cloud platforms, according to an interview last year with Vikram Baskaran, Alaska’s vice president of IT.
Alaska began migrating workloads to Microsoft Azure around 2015 and continues to maintain its own data centers for critical workloads, according to the interview.
The company last year partnered with Google Cloud on a generative AI-powered search experience.
The impact of this week’s outage was evident at Sea-Tac Airport on Thursday evening, where long lines wrapped around the concourse and a maze of suitcases piled up in the baggage claim area.
Alaska said Friday it does not have an estimate of the financial impact of the outage. The company’s Hawaiian Airlines subsidiary was not affected.
Alaska said the July outage was expected to reduce earnings by about $0.10 per share, or roughly $12 million.
The company on Thursday reported third quarter revenue of $3.8 billion, up 1.4% year-over-year, while profit dropped 69% to $123 million.
Alaska Airlines is still working to restore operations following a major outage that forced the Seattle-based company to cancel more than 360 flights on Alaska and its subsidiary Horizon Air.
The outage began Thursday around 3:30 p.m. PT. Alaska grounded planes across the U.S. as it addressed what it described as a “significant IT outage.”
In a statement, Alaska said a “failure occurred at our primary data center.” The outage was not a cybersecurity incident, according to the company.
“The IT outage has impacted several of our key systems that enable us to run various operations, necessitating the implementation of the ground stop to keep our aircraft in position,” Alaska said. “The safety of our flights was never compromised.”
The ground stop was lifted at 11:30 p.m. PT Thursday, but the company is still actively addressing operational impacts that resulted from the disruption.
The company canceled its planned third quarter earnings call on Friday. “We do not yet have an estimate of the financial impact of the operational disruption on our fourth quarter results,” Alaska said in a regulatory filing. The company reported revenue of $3.8 billion, up 1.4% year-over-year, while profit dropped 69% to $123 million.
The impact of the outage was evident at Sea-Tac Airport on Thursday evening, where long lines wrapped around the concourse and a maze of suitcases piled up in the baggage claim area.
The company’s Hawaiian Airlines subsidiary was not affected.
Alaska encouraged customers to check their flight status before heading to the airport, and flagged its flexible travel policy.
It’s Alaska’s second outage in three months. The Seattle-based airline grounded flights after an IT outage in July that lasted about three hours.
Updated at 8:40 p.m. Pacific.
Alaska Airlines said it’s recovering from an IT outage and “actively restoring operations” as of 7 p.m. Thursday after grounding flights across the U.S. for about three hours.
In a statement sent to GeekWire, Alaska said the outage began around 3:30 p.m. PT with a failure at the company’s primary data center.
“The IT outage has impacted several of our key systems that enable us to run various operations, necessitating the implementation of the ground stop to keep our aircraft in position,” the company said. “The safety of our flights was never compromised.”
The outage was not a cybersecurity event or related to other events, according to Alaska.
Flights are resuming but passengers at some airports are facing long delays as they await inbound planes.
During the outage, passengers on Reddit reported that some planes were sitting on the tarmac or de-boarding. Customers also reported issues with the company’s app and website.
It was Alaska’s second outage in three months. The Seattle-based airline grounded flights after an outage in July that lasted about three hours.
Alaska Airlines is experiencing an IT outage affecting operations. A temporary ground stop is in place. We apologize for the inconvenience. If you're scheduled to fly tonight, please check your flight status before heading to the airport.
— Alaska Airlines News (@AlaskaAirNews) October 23, 2025
100 fewer Alaska Airlines aircraft in the air now compared to last week as the airline is experiencing an IT outage this evening. Some flights are now departing, but a delays will be felt for some time to come. pic.twitter.com/zIkJTTETiz
— Flightradar24 (@flightradar24) October 24, 2025
A detailed explanation of this week’s Amazon Web Services outage, released Thursday morning, confirms that it wasn’t a hardware glitch or an outside attack but a complex, cascading failure triggered by a rare software bug in one of the company’s most critical systems.
The company said a “faulty automation” in its internal systems — two independent programs that began racing each other to update records — erased key network entries for its DynamoDB database service, triggering a domino effect that temporarily broke many other AWS tools.
AWS said it has turned off the flawed automation worldwide and will fix the bug before bringing it back online. The company also plans to add new safety checks and improve how quickly its systems recover if something similar happens again.
Amazon apologized and acknowledged the widespread disruption caused by the outage.
“While we have a strong track record of operating our services with the highest levels of availability, we know how critical our services are to our customers, their applications and end users, and their businesses,” the company said, promising to learn from the incident.
The outage began early Monday and impacted sites and online services around the world, again illustrating the internet’s deep reliance on Amazon’s cloud and showing how a single failure inside AWS can quickly ripple across the web.
Related: The AWS outage is a warning about the risks of digital dependance and AI infrastructure
Unless you’ve been on a “digital cleanse” this week, you know that Amazon Web Services (AWS) had a major outage at the start of the week.
You know this because apps and sites you use were down. Credible reports estimate at least 1,000 sites and apps were affected. Large swaths of modern digital life went dark: from finance (Venmo and Robinhood) to gaming (Roblox and Fortnite) to communications (Signal and Slack). Some people couldn’t even get a good night’s sleep because the outage took out “smart beds.” Even sporting events were impacted when Ticketmaster failed.
We’ve seen outages before, but this one seemed broader and harder to ignore.
In the wake of the outage, many well-intentioned hot takes boiled down to: “They should’ve used more cloud providers.”
Setting aside the subtle victim-blaming, there’s also the fact that in a world with only three major cloud providers (AWS, Microsoft Azure, Google Cloud) if you want to “diversify” there’s not a lot of diversity out there.
And the argument for diversity in cloud providers is really about market diversity, not individual organizations juggling multiple vendors. More competition in the cloud market would mean fewer cascading failures when one provider goes down.
The key question when something like this happens is whether we’re taking the risk lessons and expanding them beyond the immediate problem to see the emerging problems.
Instead of saying organizations need to have multiple cloud providers, we should be asking how we’re dealing with the reality of highly concentrated risks with exceptionally broad impact because we just had an object lesson in what that really means.
In this recent outage there’s a pointer to where we should be looking proactively to apply this lesson: generative AI. This recent AWS outage gives us two lessons for the emerging generative AI ecosystem.
Concentration crisis in AI
With the generative AI ecosystem, I’m talking not about chatbots — I mean AI-native applications that are built on generative AI as a platform. We just saw that when there’s no cloud, there’s no cloud-native application. Likewise, when there’s no generative AI provider, there’s no AI-native application.
The first lesson from the AWS outage for AI-native applications is what happens to an industry when there’s a limited number of providers for centralized resources and there’s an outage. We just saw: it has huge rippling effects across the industry and all walks of life built on it.
It’s a throwback to the mainframe era: when “the computer” is down, it’s down for everyone.
There are as few, if not fewer, generative AI providers as there are cloud providers. A major outage is inevitable — that’s just engineering reality. When that happens, every AI-native app built on that generative AI platform will also go down, full stop.
The impact could be even more severe than the AWS outage. It will be more like “the computer is down, and the people are gone” for many different industries and services. Ironically, the “smarter” the industry and service, the greater the potential fallout.
The second lesson is one of intertwined risk. OpenAI itself was affected by this week’s AWS outage.
That means AI-native apps have double exposure to the risks around a limited number of providers for critical, centralized resources. For AI-native apps, it’s like the mainframe era squared. If the generative AI platform fails, everything built on it fails. And if the cloud that hosts the AI platform fails, it all goes down, too.
This is not to say don’t do cloud or don’t do AI. But it is to say we need to understand this new, complex intertwining of risks inherent in a world where everything is relying on a small number of key providers and that small number of key providers also rely on a small number of key providers.
The realities of physical requirements and capital investment required for cloud and generative AI make a truly diverse ecosystem impracticable for either. I don’t think anyone sees more than a literal handful of providers for either of these in the future.
The bottom line
Highly concentrated risks with exceptionally broad impact aren’t going away anytime soon.
But the growth of generative AI providers — and their reliance on cloud providers — show where there is going to be growth and where and what those risks will be. The growth will be upwards, as technologies stack on top of and rely on each other. And that means these risks are only going to become more concentrated and the impacts even broader.
In the world of security, there’s the “CIA” triad: “confidentiality”, “integrity” and “availability.” In the first days of “Trustworthy Computing” at Microsoft, the principles included “availability.” But in recent years, availability has been overlooked often as security and privacy concerns understandably dominate.
A thoughtful application of the AWS outage tells us that outages like this are a kind of problem that isn’t an anomaly: it’s inherent in the nature of today’s technology reality. And since there are no easy solutions and only increasingly complex problems around this, we need to start understanding this new reality and thinking seriously about how to mitigate these risks.
Amazon’s e-commerce customers are experiencing unusual delivery delays following the Amazon Web Services outage on Monday — suggesting that the cloud glitch has impacted the company’s own operations more than previously reported.
Customers posting on Reddit and X reported Amazon orders that were scheduled for Monday delivery but did not arrive. Some of the comments:
Amazon workers posting on the “r/AmazonFC” Reddit community cited downtime at fulfillment centers.
We reached out to Amazon for details about delayed deliveries.
Amazon’s package fulfillment systems run atop AWS infrastructure — so disruptions in key AWS services can ripple directly into its retail and logistics network.
Amazon’s logistics arm processes about 17.2 million delivery orders per day, according to Capital One.
The fallout from delayed deliveries could lead to increased costs due to potential refund obligations and additional labor needs.
The outage started shortly after midnight Monday and lasted for about three hours, but the aftershock effects were felt by Amazon’s cloud customers for much of the day. The company blamed a DNS resolution issue with its DynamoDB service in US-EAST-1 region, it oldest and largest digital hub. Major outages originating from this same region also caused widespread disruptions in 2017, 2021, and 2023.
The outage impacted everything from sites including Facebook, Coinbase, and Ticketmaster, to check-in kiosks at LaGuardia Airport. Amazon’s own retail site, its Prime Video streaming service, and its Ring subsidiary were also affected.
Despite the major outage, Amazon’s stock was up Monday and in early Tuesday trading.
The effects of the massive AWS outage reached the sports world on Monday.
Ticketmaster was dealing with ticket management issues as a result of the outage, according to messages shared by several sports teams hosting games on Monday, including the Toronto Blue Jays and Seattle Seahawks.
The Blue Jays, facing off against the Seattle Mariners in a Game 7 MLB playoff bout at Rogers Centre in Toronto, posted a statement earlier Monday about the outage and advised fans to “hold off on managing your tickets as we work through this.”
A few hours later, the team said ticket management was returning to normal.
>World Series appearance on the line
— Morning Brew ☕️ (@MorningBrew) October 20, 2025
>AWS outage sends Ticketmaster down
>Blue Jays fans can't access Game 7 tickets
>Blue Jays opponent…Seattle
>Amazon headquarters…Seattle https://t.co/OYjjDj5cdf pic.twitter.com/rbNnwKYegG
The Seahawks, which are hosting the Houston Texans for Monday Night Football in Seattle, issued a statement about the outage “that may impact access to Ticketmaster, Seahawks Account Manager, and the Seahawks Mobile App.”
The Detroit Lions, hosting their own Monday Night Football game, also had ticketing impacted.
The outage effects went beyond just ticketing. The Premier League said its VAR tech system, used to determine offside calls in soccer, would not be available for Monday’s match between West Ham and Brentford.
Amazon’s outage began shortly after midnight Pacific in Amazon’s Northern Virginia (US-EAST-1) region, which is AWS’s oldest and largest cloud region, a popular nerve center for online services.
In an initial update, AWS said the outage was related to a DNS resolution issue with its DynamoDB product, meaning the internet’s phone book failed to find the correct address for a database service used by thousands of apps to store and find data.
Amazon later said the root cause of the outage was an “underlying internal subsystem responsible for monitoring the health of our network load balancers.”
By 3 p.m. PT, the company said all AWS services had returned to normal operations.
Major sites and services including Facebook, Snapchat, Coinbase and Amazon itself were impacted — reviving concerns about the internet’s heavy reliance on the cloud giant.
The outage suggests that many sites have not adequately implemented the redundancy needed to quickly fall back to other regions or cloud providers in the event of AWS outages.
Previously:
Login