Cloud Outages Timeline

Google Cloud Vertex Gemini API — Extended Degradation

Beginning November 13, 2024, Google Cloud's Vertex Gemini API experienced an elevated rate of errors and degraded performance in several Asia-region endpoints. The incident persisted for nearly 19 hours, making it one of the longer individual service outages in the measurement period. The impact was scoped to specific AI model endpoints rather than general infrastructure, but for developers and businesses relying on Gemini 1.5 Flash and Gemini 1.5 Pro via Vertex AI, the experience was near-total unavailability of those capabilities.

Google's official incident report cited increased error rates when customers accessed the Vertex Gemini API global endpoint. An API endpoint configuration issue prevented requests from routing correctly to healthy backend capacity. The incident was compounded by the multi-region propagation of the faulty state, requiring careful, staged remediation rather than a simple rollback.

While not a consumer-facing outage in the traditional sense, this disruption affected the California-dense AI startup and developer community heavily. The Bay Area and Los Angeles are home to hundreds of AI product companies building on Vertex AI and Gemini APIs. Developers reported workflow interruptions lasting multiple hours, delayed production deployments, and the need to rapidly implement fallback paths to alternative AI providers.

Azure China North 3 — Longest Outage of the Measurement Period

In late 2024, Microsoft Azure's China North 3 region suffered the single longest outage recorded in the August 2024–August 2025 research dataset — a 50-hour disruption that raised Azure's average outage duration significantly. A networking configuration change caused connectivity issues, prolonged timeouts, connection drops, and resource allocation failures across multiple Azure services.

Loss of indexing data in the Azure PubSub service — which is used by the networking control plane to communicate between control entities and agents on individual hosts — caused networking configuration updates to not be delivered to agents. This created a paralysis state in the control plane for the affected region. Notably, services configured to be "zonally redundant" still experienced multi-zone impact because the VNet integration itself depended on the broken control plane.

The geographic scope was limited to Azure's China region, meaning direct impact on California consumers was minimal. However, California-headquartered companies with operations or customers in China faced multi-day interruptions to cloud-hosted services. The 50-hour duration exceeded most SLA windows, raising uncomfortable questions about recovery guarantees for enterprises relying on a single regional deployment.

Google Cloud Global IAM / Service Control Crash — "A Single Bug Took Down the Internet"

On June 12, 2025, large swaths of the internet went dark starting at approximately 10:49 AM PDT. The incident originated in Google Cloud's Service Control system — the component responsible for authorizing every API request across Google's infrastructure. A null pointer exception caused Service Control binaries to crash globally, rejecting API requests with 503 errors and making 76 Google Cloud services unavailable or severely degraded across North America, Europe, Asia, Africa, and the Middle East.

The outage triggered immediate cascading failures across the internet ecosystem. Spotify, Discord, Snapchat, OpenAI (ChatGPT), Cloudflare, Twitch, Cursor, Replit, Fitbit, and Character.AI all experienced outages. Even Gmail, Google Drive, Google Calendar, Google Meet, and Google Docs went down for users requiring new authentication tokens. Full recovery didn't complete until 6:18 PM PDT.

On May 29, 2025, Google engineers deployed a new code change to Service Control to add additional quota policy checks. This code lacked proper error handling and was not protected by a feature flag. It lay dormant until June 12, when a routine policy change touching the regional Spanner tables that Service Control depends on inadvertently contained blank fields. This triggered the dormant faulty code path, producing null pointer exceptions that cascaded globally within seconds. The "herd effect" made recovery slower: as engineers restarted Service Control tasks, the restart storm itself overloaded the underlying Spanner infrastructure.

For California, the impact was deep and personal. The timing (mid-morning PDT) hit at peak productivity hours. Millions of Californians found Gmail, Google Drive, and Google Meet inaccessible during business hours. Tech companies across Silicon Valley lost access to collaborative tools, AI developer tooling (Cursor, Replit), and their own products built on GCP.

Azure East US — Compute Capacity Crisis Driven by AI Demand

In late July 2025, Azure's East US region began experiencing widespread allocation failures when customers attempted to create or update virtual machines. The root cause was not a technical fault in the traditional sense, but rather a surge in AI-driven compute demand that outstripped Microsoft's available capacity. Customers saw allocation failure errors and could not spin up new cloud resources. Microsoft reported the problem officially resolved by August 5, though some users continued to experience problems days later.

The AI infrastructure boom of 2025 created extraordinary pressure on data center capacity. GPU instances and high-memory VM families in Azure's busiest US region were effectively sold out or over-subscribed. This represented a new category of cloud "outage" — not a failure of software or hardware, but of forecasting and provisioning. The event highlighted a structural tension that became a defining theme of 2025 cloud infrastructure: rapid AI adoption was outpacing the physical realities of data center expansion, power procurement, and hardware supply chains.

California technology companies attempting to scale AI workloads on Azure during this period found their deployments blocked. Companies building AI products on Azure — including many healthcare AI firms, fintech startups, and enterprise software vendors headquartered in California — were unable to expand capacity at a critical time. The event foreshadowed the October Azure outage and reinforced the case for multi-cloud strategies.

AWS US-EAST-1 — "The Outage That Shook the Internet"

On the night of October 19 into the early morning of October 20, 2025 — starting around midnight Pacific Time — Amazon Web Services' US-EAST-1 region experienced what became one of the largest and most consequential cloud outages in history. The disruption lasted approximately 14–15 hours. At its peak, Downdetector recorded over 17 million user reports from more than 60 countries — a 970% spike above the normal baseline — making it one of the largest internet disruptions ever tracked.

The cascade swept through the digital economy: Snapchat, Slack, Atlassian (Jira, Confluence), Netflix, Disney+, Hulu, Prime Video, Coinbase, Venmo, Roblox, Fortnite, Ring doorbells, Pokémon GO, Duolingo, Alexa, Signal, smart beds, and UK government services (HMRC) all went down or severely degraded. Medical practices couldn't access patient records. Law firms lost access to documents for time-sensitive court filings.

AWS uses a system called DWFM (Distributed Workflow Manager) to coordinate DNS record updates. A rare timing race condition between the Planner and Enactor components caused the Enactor to process a stale, already-superseded DNS plan for DynamoDB's regional endpoint. Cleanup automation then deleted what it believed were orphaned records — but these were actually the correct, current records pointing DynamoDB to real servers. The result: an empty DNS record for DynamoDB in US-EAST-1.

Because 141 AWS services internally depend on DynamoDB, the failure cascaded rapidly. Even after DNS was restored at approximately 9:25 AM UTC, accumulated state inconsistencies from three hours of lost DynamoDB lease management continued to cause EC2 failures until 8:50 PM UTC — over 11 additional hours.

The October 20 AWS outage was the single most disruptive cloud event within the research period for California residents. Snapchat — headquartered in Santa Monica — received approximately 3 million outage reports. Millions of Californians found home security systems unresponsive. UC Riverside students and staff were among those who couldn't access Canvas, a learning management system used by 50% of college students in North America.

Azure Front Door Global Failure — "Front Door Locked Everyone Out"

Just nine days after the catastrophic AWS outage, Microsoft Azure experienced its own major global failure. Beginning at approximately 3:45 PM UTC (9:45 AM PT) on October 29, 2025, an inadvertent configuration change to Azure Front Door — Microsoft's global content delivery and application delivery network — caused cascading failures affecting services on every continent. The outage lasted approximately 8 hours and 20 minutes.

The affected services read like a catalog of modern digital life: Microsoft 365 (Outlook, Teams, OneDrive), Xbox Live, Minecraft, the Azure Portal, Microsoft Copilot, Microsoft Entra ID, Azure SQL Database, Azure Databricks, Azure Healthcare APIs, and the websites of Costco, Starbucks, and Alaska Airlines. Over 30,000 reports were logged in the first hour.

A tenant configuration change was processed simultaneously by two different versions of Azure's control plane software running in parallel. Both versions produced slightly different interpretations of the same configuration update, resulting in an invalid payload being propagated to Azure Front Door edge nodes globally. Because AFD sits in the client handshake path and fronts identity issuance, the configuration failure prevented clients from completing TLS handshakes and obtaining authentication tokens — effectively locking users out of services even when backend origin servers were healthy.

For California, the timing was particularly acute — hitting during the mid-morning business window on the West Coast. Organizations running on Microsoft 365 (schools, government agencies, healthcare providers, enterprises) lost access to email, video conferencing, and file collaboration. Alaska Airlines faced disruptions at Los Angeles and San Francisco hubs.

Cloudflare Global CDN Failure — "Worst Outage Since 2019"

On November 18, 2025, at 11:20 UTC (3:20 AM PT), Cloudflare's global network began returning HTTP 500 errors for a significant fraction of all web traffic passing through its infrastructure. The outage affected major platforms including X (Twitter), ChatGPT (OpenAI), Anthropic's Claude, Spotify, Canva, League of Legends, Dropbox, Shopify, Coinbase, and thousands of other sites. The major impact period lasted approximately three hours. This was described as Cloudflare's most severe service disruption since 2019.

At 11:05 UTC, a database permissions change was deployed to Cloudflare's ClickHouse cluster. This inadvertently caused a query for the Bot Management system to return duplicate rows, doubling the size of the Bot Management feature file from ~60 features to over 200. When this oversized file propagated to Cloudflare's proxy servers globally during their regular five-minute refresh cycle, the file exceeded a hardcoded memory allocation limit. Cloudflare's core proxy software (written in Rust) called Result::unwrap() on an Err value when the file failed to load — causing a panic and crashing the proxy process.

A circular dependency compounded user pain: Cloudflare's own dashboard used Turnstile (their CAPTCHA service) for login, but Turnstile itself ran through the broken proxy layer — making it impossible for most Cloudflare customers to log in to manage their own configurations during the outage.

Cloudflare powers an estimated 20%+ of all internet traffic globally. For Californians, the 3:20 AM start time meant the worst of the outage occurred during pre-dawn and early morning hours, with many services still degraded at the start of the business day. This was the third major cloud disruption within five weeks, creating an extraordinary period of infrastructure instability.

Cloudflare — Second Outage in Three Weeks

On December 5, 2025, at 08:47 UTC, Cloudflare's network experienced a second major outage, just 17 days after the devastating November 18 incident. This time the disruption lasted only approximately 25 minutes and affected approximately 28% of Cloudflare's HTTP traffic, but the breadth was still significant: LinkedIn, Zoom, Canva, and Shopify were among the confirmed impacted platforms. The incident was resolved at 09:12 UTC when engineers reverted the triggering change.

While attempting to rapidly mitigate a newly discovered industry-wide vulnerability in React Server Components, Cloudflare's security team deployed a change to WAF rule testing tooling. The change contained a Lua exception bug: when the WAF rules module callback was removed, the code attempted to index a nil field named 'execute' — causing an HTTP 500 to be returned for all affected requests. Cloudflare had pledged after the November 18 outage to implement safeguards preventing single updates from causing widespread impact, but those safeguards had not yet been fully deployed.

Although brief, the outage disrupted Zoom video calls and LinkedIn networking activity — both heavily used by California's professional and business communities — during a morning UTC window. The incident reinforced that Cloudflare had not yet solved its deployment safety problem, further eroding trust in single-CDN architectures.