A growing number of businesses are discovering they are not prepared for cloud outages, even as these events become more frequent and damaging. According to the EU, nearly 53% of its businesses use paid cloud services, with some countries reaching nearly 80%. As more critical functions — from DNS resolution and email to data storage — move to the cloud, the disruption from any outage grows. A report by Parametrix found that in 2025 there were 45 critical interruptions of cloud service lasting over 150 hours in total.
The mounting cost of downtime
The financial impact of even a single outage can be staggering. An AWS outage in Autumn 2025 that lasted 15 hours led to estimated material damages of between $38 million and $581 million, according to Parametrix. When indirect costs such as reputational harm, lost revenue, and reduced productivity are factored in, total damage can reach into the billions — a figure that appears to be climbing despite major data-center investments in security.
Why outages are becoming more threatening
Several converging factors are making cloud outages both more likely and more severe.
Market concentration: Three U.S. hyperscalers — AWS, Microsoft, and Google — control over two-thirds of the global cloud market. This creates chokepoints where a single internal error can cascade into a market-wide disruption.
Infrastructure strain: Data centers depend heavily on physical infrastructure, especially power and water. Power outages are the second most common cause of critical cloud outages. Climate change, community resistance, and aging grids are exacerbating these risks.
Security and geopolitics: Data centers are becoming targets in political conflicts — most recently during the war in Iran, where several were struck. Criminal and state-sponsored hackers also target data centers for the critical data they hold. The UK's National Cybersecurity Centre has stressed the need for more resilient data center software. In response, the EU has launched data sovereignty initiatives to build more cloud capacity within its borders.
How businesses can de-risk themselves
Migrating completely away from the cloud is not an option, so businesses must embed outage preparedness into ongoing strategic planning. Business Continuity Planning (BCP) should include clear procedures for operating with limited or zero cloud access. The following strategies are recommended:
| Strategy | Description | Protection scope |
|---|---|---|
| Local backups / edge computing | Store key data on-site or enable offline workflows | Shields from cloud outages entirely, but requires local management |
| Regional distribution within a single provider | Spread systems across multiple regions of one cloud provider | Protects against regional outages; minimal setup |
| Multi-cloud deployment | Use multiple cloud providers | Insulates from provider-specific outages; requires synchronization |
To implement multi-cloud effectively, companies must maintain synchronization between solutions — either manually or via third-party software.
Looking forward
Cloud outages are now a fact of life. Businesses that depend on cloud access need to build effective adaptation plans to avoid significant disruption. As reliance on the cloud continues to grow, resilience planning can no longer be treated as a 'nice-to-have' option. The views expressed here are those of the author and do not necessarily reflect those of TechRadarPro or Future plc.
Sources:
