Microsoft Azure Outage: A Case For Digital Sovereignty?

Microsoft’s Azure outage earlier this week has again highlighted the vulnerabilities present in the global cloud infrastructure.

The incident, which lasted for more than eight hours, was caused by Domain Name System (DNS) issues and affected several major companies including Asda, M&S, O2, Starbucks, Kroger, Alaska Airlines and Heathrow Airport .

The disruption demonstrates a growing dependence on a small number of global cloud platforms, which form the backbone for a wide array of essential services from communications to productivity tools.

This latest outage that impacted sectors from travel to retail reinforces calls for greater digital resilience and sovereignty, especially following a similar Amazon Web Services (AWS) disruption just last week.

A 'digital pandemic'

According to Chris Dimitriadis, Chief Global Strategy Officer of ISACA, the Azure crisis is part of a broader trend he describes as a “digital pandemic”.

This term reflects how a single point of failure can create significant ripple effects.

“We are witnessing recurrent widespread outages like the Microsoft Azure outage and the disruption to Amazon Web Services,” he says.

“It’s yet another stark warning of how interconnected and fragile our digital world has become.”

Chris’ message is that organisations have reached a critical point.

“Today we may have faced a bug in the system, tomorrow attackers may be able to exploit this fragility and cause massive impact,” he explains.

He warns that by weaponising AI, hacking will become mainstream, permitting anyone to launch an attack at the speed of intent.

Cloud dependency and sovereignty

The Azure outage has shown how quickly a single fault can affect global commerce.

This reliance on a few vendors for critical infrastructure is a growing concern for businesses and governments.

Raphael Auphan, COO at Proton, stresses the seriousness of this.

He says: “For the second time in two weeks, we've seen a massive portion of the internet taken offline thanks to the mistakes of a solitary tech giant. This is further proof that relying on a handful of major cloud providers creates serious vulnerabilities.”

Raphael notes that the global impact of these outages highlights a specific geopolitical risk in the global dependence on US technology.

“Simply put, when the whole world relies on tech from a few companies from one country, then the whole world is vulnerable. The only answer for the UK, Europe and elsewhere is to prioritise digital sovereignty – in other words, to develop their own native services."

The need for cyber resilience

The need for improved cyber resilience and supply chain protection is now a practical priority.

Chris urges immediate action to strengthen digital infrastructure.

“We must act now to embed cyber resilience into the very fabric of our digital infrastructure," he says.

"That means investing in education, training and building a larger, better-equipped army of cybersecurity professionals.”

This view is shared by Mark Odom, Senior Solutions Engineer at Black Duck, who adds: “This story highlights the importance of ‘don’t put all your eggs in one basket’.

"Important services should use automatic failover to ensure business continuity in the event that their providers experience an outage.”

Jamie Beckland, CPO at APIContext, continues: “Companies know that it's essential to failover gracefully and have multi-cloud infrastructure. But too often operational resiliency is treated as a nice-to-have or an afterthought.

“Continuous monitoring of your vendors and critical third parties is essential to hold them accountable for delivering as expected.”