Microsoft Azure Outage: A Lesson In Digital Sovereignty

A major Microsoft Azure outage earlier this week has highlighted the vulnerabilities in cloud-dependent digital ecosystems, occurring just one week after a similar incident at Amazon Web Services (AWS).

The disruption exposed the fragility of a hyperconnected commercial landscape.

Domain Name System (DNS) issues affected major companies like Asda, M&S, O2, Starbucks and Heathrow Airport.

The event, which lasted for more than eight hours, is a stark reminder of the widespread reliance on a small number of global cloud platforms.

These providers form the backbone for a vast range of essential business functions, from transaction processing to core productivity tools.

This latest failure reinforces the urgent need for enhanced cyber resilience and a re-evaluation of digital sovereignty.

The ‘digital pandemic’ and systemic risk

The Azure crisis can be seen as part of a wider, more concerning pattern.

Chris Dimitriadis, Chief Global Strategy Officer of ISACA, describes the situation as a “digital pandemic”.

“When the CrowdStrike outage hit last year, I coined the term ‘digital pandemic’ – where a single point of failure in the technology ecosystem can cause ripple effects across multiple industries,” he says.

“More than a year later, we are witnessing recurrent widespread outages... Both incidents impacted critical sectors, including communications, retail, and workplace productivity tools worldwide. It’s yet another stark warning of how interconnected and fragile our digital world has become.”

Chris' core message is clear: “Organisations are now at a crossroads as, today, we may have faced a bug in the system, tomorrow, attackers may be able to exploit this fragility and cause massive impact."

He warns that by "weaponising AI, hacking will become mainstream... permitting anyone to launch an attack at the speed of intent”.

Cloud dependence and digital sovereignty

The cascading failure from Azure’s outage shows how quickly a single fault can disrupt global commerce.

The incident has intensified discussions around the risks of depending on a handful of vendors for critical infrastructure.

Raphael Auphan, Chief Operating Officer at Proton, stresses the gravity of this widespread reliance.

He says: “For the second time in two weeks, we've seen a massive portion of the internet taken offline thanks to the mistakes of a solitary tech giant.

"As if we needed reminding, this is further proof that relying on a handful of major cloud providers creates serious vulnerabilities across the internet and puts whole economies at risk in the process.”

Raphael notes that the Azure and AWS outages reveal a specific geopolitical vulnerability, highlighting the danger of a global dependence on US technology.

“Simply put, when the whole world relies on tech from a tiny number of companies from one country, then the whole world is vulnerable," he says.

"The only answer for the UK, Europe and elsewhere is to prioritise digital sovereignty – in other words, to develop their own native services."

Building cyber and operational resilience

The conversation around supply chain protection and cyber resilience is no longer theoretical.

Experts are urging organisations to take immediate and practical steps to mitigate these risks.

Chris calls for foundational changes: “We must act now to embed cyber resilience into the very fabric of our digital infrastructure.

"That means investing in education, training, and building a larger, better-equipped army of cybersecurity professionals who can envelope our supply chains in resilience,” he explains.

This point is echoed by other industry professionals.

Mark Odom, Senior Solutions Engineer at Black Duck, adds: “This story highlights the importance of ‘don’t put all your eggs in one basket'."

He suggests important services should use automatic failover to ensure business continuity if their providers experience an outage.

Jamie Beckland, Chief Product Officer at APIContext, continues: “We saw several of the Fortune 500 impacted by this outage within minutes of the Azure issues commencing."

"Companies know that it's essential to failover gracefully and have multi-cloud infrastructure... But too often operational resiliency is treated as a nice-to-have or an afterthought."

"Continuous monitoring of your vendors and critical third parties is essential to hold them accountable for delivering as expected.”

With technology now so deeply integrated into society, it is critical to keep disaster recovery plans fluid and dynamic.