The recent outage that impacted Azure and other Microsoft services on Tuesday has been attributed to a DDoS attack, according to Microsoft. The company has also acknowledged that its own DDoS protection measures may have unintentionally worsened the situation.
Microsoft has not yet disclosed specific details regarding the scope or perpetrators of the DDoS attack. Customers initially encountered issues around 1:45 PM Dutch time when the attack occurred. As a result of the DDoS attack, the Azure Front Door and Azure Content Delivery Network services experienced disruptions, leading to error messages, timeouts, and latency spikes. Various Azure services, as well as parts of Microsoft 365 and Purview services, were impacted by the attack, as stated by the company.
Following the DDoS attack, Microsoft activated its DDoS protection mechanisms. However, preliminary investigations suggest that a failure to implement these protections effectively may have amplified the attack's impact rather than mitigating it. Consequently, it wasn't until 9:43 PM Dutch time that Microsoft's outage levels were restored to normal. A spokesperson for the company announced an hour later that the outage had been resolved. Microsoft has committed to providing more insights into the global outage over the coming days and weeks.
English (US)