On 18 November 2025, a single technical incident at Cloudflare was enough to make large parts of the internet feel “down” for hundreds of millions of people.
For a few hours, users trying to access platforms like X, ChatGPT, Spotify, Canva, Grindr and thousands of other sites were greeted with the same message: an “internal server error on Cloudflare’s network” and generic 500 pages instead of the services they rely on every day. Cloudflare, which handles roughly a fifth of global web traffic, reported a global network issue that led to widespread 500 errors and impacted its dashboard and API, before progressively deploying a fix and stabilising its infrastructure.
Incidents happen. Bugs exist. No system is perfect.
The real problem is that our entire digital ecosystem is now deeply dependent on a few infrastructural chokepoints – and most organisations don’t even have a clear map of those dependencies.
This is what I want to talk about here: not to point fingers at Cloudflare, but to use this outage as a concrete, global reminder of why resilience and digital dependency need to become first-class topics in every boardroom.
Cloudflare is doing what Cloudflare is supposed to do: absorb attacks, accelerate traffic, cache content at the edge, terminate TLS, and make “bad days” less visible.
But today’s outage showed the other side of that coin:
Most users didn’t say “Cloudflare is down” today.
They said “X is down”, “ChatGPT is broken”, “my bank website doesn’t work”, “my SaaS tool is down”.
From a technical perspective, many of those services were healthy at the origin. The problem was in the middle: in the connective tissue of the internet.
When we talk about digital dependency, we are not just talking about “we use Cloudflare” or “we are on AWS”.
We are talking about chains of dependencies:
Most organisations don’t have a structured view of those dependencies.
They see their own apps, maybe their cloud provider. But they don’t see the full stack of:
Today’s incident is exactly the kind of event that exposes this blind spot.
For the past months, I’ve been working with others on an open standard called IRN – Indice de Résilience Numérique.
You can find more information (in French for now) here: resiliencenumerique.com.
The idea behind IRN is simple but ambitious:
Provide a structured, transparent way to measure and visualise the resilience of an information system by mapping its dependencies across technical, organisational, legal, and geopolitical dimensions.
Concretely, IRN is meant to help organisations:
IRN is not a product; it is a shared language and methodology.
An open standard that anyone can adopt, extend, or implement.
In parallel to this conceptual work, I wanted to offer something immediately usable today.
So I published an open source project on GitHub that implements a very pragmatic piece of resilience around the exact kind of event we saw today:
A minimal multi-DNS / multi-CDN failover toolkit that keeps Cloudflare DNS and deSEC (EU and open-source based + free) DNS in sync, and lets you automatically switch traffic between Cloudflare and a secondary CDN (for example Bunny) when the primary path is unhealthy.
The core ideas:
web-router.example.com CNAME that points either to:
cf-front.example.com (Cloudflare front), orcdn2-front.example.com (secondary CDN front).This is not meant to be “the solution to everything”.
But it is a concrete building block you can plug into your own infrastructure as part of a broader resilience strategy.
If there is one lesson I hope we all take away from today, it’s this:
That means:
Today’s Cloudflare outage was annoying for many.
Tomorrow, a similar event could impact healthcare, energy, public safety, financial stability if we are not careful.
If you are interested in these topics; resilience, digital dependency, IRN, or the open source tools I am publishing; feel free to reach out. This work will move faster if we build it together.
Amir Moradi is a Paris-based technology leader, entrepreneur, and consultant with over a decade of experience in technology management, digital healthcare, e-commerce, SaaS, artificial intelligence (AI), and machine learning (ML) platforms. Known for his results-driven approach and expertise in scaling high-growth businesses, Amir has held notable leadership roles, including serving as the Chief Technology Officer (CTO) of Beauteprivee, a leading French cosmetics e-commerce company, and co-founding several innovative ventures.
Amir pursued his higher education at Université de Lorraine in France, where he earned a Bachelor's degree in Networking and Control Engineering and a Master's degree in Complex Systems Engineering. His academic foundation laid the groundwork for his deep technical expertise and innovative problem-solving skills.
A prolific innovator, Amir has been instrumental in launching several AI-driven platforms, including Rectified.ai, a simplified machine learning infrastructure platform, and DrawMyText.com, an AI text-to-image generator. His work consistently emphasizes inclusivity, scalability, and cutting-edge technology.
Beyond his entrepreneurial endeavors, Amir Moradi is a vocal advocate for responsible technology use, founding LumenVigil to raise awareness about the dangers of excessive screen exposure, especially for children.
Fluent in Persian, English, and French, with elementary knowledge of Arabic and Hindi, Amir Moradi is an adept communicator across diverse cultural and professional contexts. He has been recognized for his leadership in various forums, winning awards like Startup Weekend Nancy and Créativ'Est.