On 5 May, a technical fault knocked large parts of the German internet offline. Websites ending in .de suddenly stopped loading, not just in Germany but around the world. It wasn’t hackers, a traffic surge, or servers going down. It was something quieter, and more revealing about how the internet actually works.
How the internet finds websites
Think of the internet like a phonebook. When you type something like example.de into your browser, your computer asks a system called DNS where to find it. DNS replies with the correct address, and the site loads.
Now imagine a tamper-proof seal on that phonebook, something that confirms the answer hasn’t been interfered with. That’s essentially what DNSSEC does. It’s a security layer added on top of DNS to verify that the directions you’re being given are legitimate.
During this outage, that seal broke.
What actually went wrong?
DENIC, the organisation responsible for managing Germany’s .de domain names, accidentally published faulty security signatures in their system. These signatures exist to prove that DNS answers are genuine and trustworthy. Because they were incorrect, computers checking them concluded something was wrong and refused to connect at all.
That’s why users saw hard errors rather than slow loading or partial failures. The system didn’t degrade gradually. It stopped.
Why it spread well beyond Germany
The fault sat at the very top of the .de system, meaning every request for a .de website passed through it. Because most modern internet providers verify these security signatures as a matter of course, the failure spread almost instantly across borders.
One bad update, one national domain, immediate global impact.
The good news is, that it was really brief and happened during quieter hours. Real people would have been impacted across Germany and the world, but it was a couple of hours. Nothing compared to the Iberian electric grid outage.
The bigger point
The internet feels like a sprawling, decentralised network, and in many ways it is. But parts of it are surprisingly concentrated. Entire countries’ web traffic can depend on a small number of systems working exactly as they should.
Security layers like DNSSEC are genuinely valuable. They protect users from being misdirected to fraudulent sites. But they also operate on a strict rule: if something looks wrong, block everything. That makes the system more secure under normal conditions, but more fragile when a mistake creeps in.
For most people, this looked like “the internet breaking”. For businesses relying on .de domains, it meant lost traffic, inaccessible services, and missed revenue with no obvious explanation and nothing they could fix themselves.
For anyone working in digital, it’s a useful reminder that even solid rankings and well-optimised infrastructure count for nothing if the underlying plumbing of the internet fails. The stuff you never see is often the stuff that matters most.
