independent security researcher Kevin Beaumont and other analysts see evidence that some X origin servers, which respond to web requests, weren’t properly secured behind the company’s Cloudflare DDoS protection and were publicly visible. As a result, attackers could target them directly
oops
And the guy running that shit show has his slippery fingers in virtually all US government agency server rooms. How reassuring.