Analysis indicates that the incident once again highlights the global internet's heavy reliance on a few infrastructure providers.
Written by: Zhao Yuhe
Source: Wall Street Watch
On Tuesday morning Eastern Time, internet infrastructure service provider Cloudflare announced that its global network was experiencing anomalies, leading to access failures such as "internal server error" on numerous websites, including the social media platform X. Users were unable to access many websites and services, including retail, e-commerce, social media, financial services, and transportation-related platforms. The company later claimed that the issue was resolved in less than four hours.
During the downtime, some functions of X were interrupted, and many websites faced access issues. According to data from the outage tracking platform Downdetector, in addition to X, a large number of sites were affected, with related reports continuing to rise. Users encountered Cloudflare-related error messages when accessing websites such as X, ChatGPT, DoorDash, IKEA, and the Metropolitan Transportation Authority (MTA) of New York City.
Subsequently, a female spokesperson for Cloudflare stated that around 6:20 AM Eastern Time, there was an abnormal surge in traffic for one of their services, leading to errors in the traffic passing through the company's network.
Another spokesperson for Cloudflare, Jackie Dutton, said in a statement that the issue was caused by an automatically generated configuration file used to manage threat traffic, and the fix took less than four hours. The company stated that core remediation measures had been deployed but cautiously noted that the system "still needs time to fully stabilize."
Dutton stated:
"The number of entries in this file exceeded the expected size, triggering a crash in the software system responsible for handling some of Cloudflare's service traffic."
The statement indicated that there was no evidence to suggest that the incident was related to a cyberattack or malicious activity.
The impact of the outage was extensive. Downdetector reported on its platform that during the Cloudflare outage, "reports of affected services exceeded 2.1 million," indicating that this incident had become one of the more severe infrastructure-level disruptions in recent years.
After the incident, Cloudflare's stock price initially plummeted by 7% at the opening on Tuesday, but the decline later narrowed.
The digital asset industry also reacted. Binance co-founder and former CEO Zhao Changpeng posted on X, stating: "Blockchain kept working," implying that decentralized systems were unaffected by this incident.
By 12:15 PM Eastern Time, Cloudflare reported that the system was gradually recovering, but some regions worldwide might still experience access errors, performance degradation, or login issues. The company would continue to update the repair progress on its status page.
Overreliance on a Few Companies
In recent years, multiple incidents involving digital infrastructure providers have led to global internet usage paralysis. Amazon Web Services (AWS), CrowdStrike Holdings Inc., and Microsoft have all experienced similar incidents, highlighting the internet's significant reliance on a few companies for service provision.
Cloudflare and AWS's services are almost "invisible" to ordinary users, but their tools support a vast number of websites and services that consumers use daily.
Last month, an AWS outage caused parts of the internet to become paralyzed, rendering millions of users' websites and applications unusable, disrupting retail sales, and interrupting social media and financial services, affecting many businesses. Last year, a vulnerability in a tool used by cybersecurity company CrowdStrike caused widespread crashes in global computer systems, leading to thousands of flight delays and cancellations, and disrupting operations for government agencies and large enterprises.
Graeme Stewart, an expert from California cybersecurity company Check Point Software, stated that such incidents underscore the internet's overreliance on a few infrastructure providers.
He said:
"Many organizations still rely on a single path for all critical services without effective backups. Once that path encounters issues, there are no backup plans. This is the problem we keep seeing."
Alan Woodward, a cybersecurity professor at the University of Surrey, stated that Tuesday's outage once again demonstrated the internet's heavy reliance on "a few players." He described Cloudflare as "the largest company you've never heard of."
"People have no choice but to rely on these few large companies."
CTO Apologizes
Cloudflare's Chief Technology Officer Dane Knecht apologized for the incident. He wrote on X:
"When the Cloudflare network has issues that affect the massive traffic relying on us, we let down our customers and the entire internet. The issue itself, the impact it caused, and the time taken to resolve it are unacceptable. We have begun taking steps to ensure that similar situations do not happen again, but I know today has indeed caused trouble for everyone. Customer trust is paramount, and we will do everything we can to regain that trust."
Cloudflare has experienced similar outages multiple times in recent years.
In July 2019, a vulnerability in Cloudflare's software caused excessive resource consumption in some network modules, taking thousands of websites relying on Cloudflare (including Discord, Shopify, SoundCloud, and Coinbase) offline for up to 30 minutes. In June 2022, Cloudflare experienced an outage that affected traffic across its 19 data centers, causing multiple major websites and services to go down for about an hour and a half.
Cloudflare's software is used by hundreds of thousands of companies worldwide as a buffer between enterprise websites and end users, protecting websites from traffic attacks or outages caused by traffic surges.
Last year, a faulty software update released by cybersecurity company CrowdStrike caused millions of devices running Microsoft Windows to crash, leading to widespread chaos across various industries, including aviation, banking, and healthcare.
The CrowdStrike outage stemmed from an error in its product running at the lowest level on customer computers. Cloudflare's role is to protect internet infrastructure, such as websites and platforms, so when Cloudflare goes down, many popular websites become directly inaccessible or exhibit anomalies. Cloudflare primarily focuses on "keeping websites online and fast," while CrowdStrike focuses on protecting computers and servers from attacks.
免责声明:本文章仅代表作者个人观点,不代表本平台的立场和观点。本文章仅供信息分享,不构成对任何人的任何投资建议。用户与作者之间的任何争议,与本平台无关。如网页中刊载的文章或图片涉及侵权,请提供相关的权利证明和身份证明发送邮件到support@aicoin.com,本平台相关工作人员将会进行核查。
