Penta Security Inc. > Blog > Cloudflare Global Outage Disrupts Major Internet Services

Cloudflare Global Outage Disrupts Major Internet Services

2025-11-19 Blog
cloudflare outage global shutdown failure

Cloudflare Global Outage Disrupts Major Internet Services

The Cloudflare global outage occurred on November 18, 2025, and was caused by an internal service degradation. The outage affected Cloudflare’s dashboard, API, and core network services, which resulted in intermittent failures for numerous websites and services that rely on Cloudflare’s platform. Cloudflare first acknowledged the problem at 11:48 UTC, stating it was experiencing an internal service degradation with some services intermittently impacted. By 12:21 UTC, the company updated noting that services were beginning to recover, though customers might see higher error rates during remediation. After six hours into outage, Cloudflare stated all issues have been resolved.

Source: Bleeping Computer, Cyber Security News

 

New DoorDash Data Breach in October Compromised Customer Information

The DoorDash data breach in October 2025 exposed information belonging to two primary categories of individuals: consumers and Dashers (merchants). The attack occurred via an unauthorized third party gaining access after a DoorDash employee fell victim to a social engineering scam. The types of personal data stolen included first and last name, physical address, phone number, and email address; the report does not explicitly list any non-PII data that was stolen. The official statement on the number of individuals affected is not specified; the company only confirmed that the incident impacted a mix of consumers, Dashers, and merchants.

Source: Infosecurity Magazine, Security Week

 

Washington Post Breach Affects 10,000 Staff and Contractors

The Washington Post is notifying nearly 10,000 employees and contractors that some of their personal and financial data has been exposed in the Oracle data theft attack. The hackers leveraged a then-zero-day vulnerability in Oracle E-Business Suite software that the Washington Post used internally, stole data, and then attempted to extort the firm in late September. Among the organizations that were breached using the same vulnerability in Oracle E-Business Suite are Harvard University, American Airlines subsidiary Envoy Air, and Hitachi’s GlobalLogic.

Source: Bleeping Computer, Security Affairs

 

UK Boosts Cybersecurity Regulations Following Attacks on Critical Infrastructure

The Cyber Security and Resilience Bill was introduced by the UK government to strengthen national cyber defenses. The three main areas the bill is designed to enhance are critical national infrastructure sectors such as healthcare, transport, and energy. The bill primarily applies to medium and large managed service providers offering IT, cybersecurity, and digital support to organizations like the NHS, as well as critical suppliers. The key financial metric related to compliance/non-compliance is turnover-based penalties for serious violations.

Source: Bleeping Computer

 

 

Click here to subscribe our Newsletter

Click here for inquiries regarding the partner system of Penta Security

 

Check out Penta Security’s product lines:

Web Application Firewall: WAPPLES

Database Encryption: D.AMO

 

Check out the product lines of  Cloudbric by Penta Security:

Cloud-based Fully Managed WAAP: Cloudbric WAF+

Agent based Zero Trust Network Access Solution: Cloudbric PAS

Agentless Zero Trust Network Access Solution: Cloudbric RAS

Click here for inquiries regarding the partner system of Cloudbric

Tags: