Monday’s Amazon Web Services meltdown didn’t just crash Snapchat, Fortnite and banking apps worldwide. It handed hostile nations a blueprint to potentially cripple the internet, warns Donald Trump’s former cybersecurity commander, former NSA director Admiral Mike Rogers.

In an interview in Melbourne, Rogers warned that hostile nations and criminal groups closely monitor every major technology failure, mapping weak points and learning how to replicate the chaos on an even more devastating scale.

“What worries me is how this concentration risk can be exploited by threat actors or hostile nations,” Rogers said. “These groups will be watching outages closely and mapping the interdependencies in our digital infrastructure.”

The AWS incident began after 6pm AEDT on Monday due to problems with a core database product, affecting everything from Ring doorbell cameras to Tinder, to cryptocurrency exchanges and major media organisations. The episode revealed the fragility of cloud-based systems that are controlled by a handful of tech giants, and some experts have suggested the cumulative economic damage could reach into the hundreds of billions of dollars.

Rogers, who commanded US Cyber Command under both Presidents Obama and Trump and is now an advisor for Australian cybersecurity firm CyberCX, said the concentration of internet infrastructure in relatively few companies has created systemic risk.

He says we’ve accidentally built a house of cards.

“We have increasingly created a structure that is hyper-interdependent,” he said. “Problems in one major component can have massive ripple effects. While this wasn’t the intent, we have created lots of single points of failure or friction.”

The warning comes as Australia confronts an increasingly hostile cyber threat environment. Rogers worked on the Australian government’s 2023 cybersecurity strategy and said that China has positioned destructive malware within critical infrastructure in both Australia and the United States, targeting telecommunications networks and power grids.

“The fact that China has penetrated those telecommunication networks so broadly for such an extended period of time” means Beijing could identify who is under espionage investigation and understand intelligence-gathering methodologies, he said.

Most concerning is the shift from espionage to disruptive attacks. CyberCX says that over the past 18 months, nation-state actors, notably Iran, Russia and China, have continued to normalise sabotage and pre-positioning against Australian critical infrastructure and civilian organisations.

Rogers said adversaries are deploying artificial intelligence “much more aggressively, much faster than the defenders are”, giving attackers unprecedented speed and scale advantages.

Criminal actors are increasingly “going for disruption, degradation, not just denial” because “if I can inflict some measure of damage or degradation, there’s a higher probability that the target network owner pay a ransom”.

Monday’s AWS disruption drew comparisons to the 2024 CrowdStrike outage, which was estimated to have caused upwards of $US5 billion in damages and grounded thousands of flights. Both incidents exposed how seemingly minor technical issues can cascade into global chaos when critical infrastructure depends on centralised systems.

“The real risk is the potential for highly disruptive attacks executed by groups with the knowledge and resources to replicate these outages at scale,” Rogers said.

Rogers said Australian telecommunications infrastructure remain particularly vulnerable, pointing to recent emergency service outages. “We’ve created a system that is so complex we don’t fully understand it,” he said. “We’ve created a system in which we don’t truly realise the interdependencies that we’ve created.”

AWS is the dominant player in cloud computing globally, accounting for about a third of the market and double that of Google and Microsoft.

Rogers stressed that the greatest long-term challenge isn’t any single technological solution but creating integrated partnerships between government and private sector. He pointed to Ukraine’s cyber resilience model, in which network owners, government agencies and Western cybersecurity firms collaborate in real time.

“We’re still not where we need to be in terms of the government and private sector working together in an integrated way 24/7,” Rogers said. “Although cooperation is great after the event, that always puts you behind the power curve.”

Rogers dismissed suggestions that cyber deterrence could work like nuclear deterrence, arguing Western democracies haven’t demonstrated sufficient “political will or intent” to use offensive cyber capabilities. This has led authoritarian nations to conclude “there’s a relatively low price to pay” for aggressive cyber operations, he said.

When asked what keeps him awake at night, Rogers pointed to two factors: adversaries “going destructive, really aggressively” and their superior use of AI compared to defenders.

“If this is peacetime, I hate to see what wartime looks like,” he said.