Skip to main content
Journal Club4 min read

Sovereignty Is Not Resilience: What the Cloud Strikes Actually Showed

An AWS region is built to survive losing one of its three availability zones. In the UAE, two went down at once. The reporting is solid; the lesson the German data debate draws from it is the part worth checking.

Dr. Sven Jungmann

Dr. Sven Jungmann

CEO

Editorial collage of a single server-room corridor mirrored three times and overlapping at one shared edge, over a teal map of central Europe with a charcoal fault line and one amber dot.

A cloud region is engineered around a quiet assumption: lose one availability zone — one physically separate data centre — and the others carry the load. Amazon designs storage such as S3 to absorb exactly that, the loss of a single zone within a region. The assumption held until two went dark together.

On 2 March 2026, CNBC reported that drones had struck two Amazon Web Services facilities in the United Arab Emirates directly and damaged a third in Bahrain — structural damage, disrupted power, and water damage from fire suppression. The headline is the geopolitics. The line that matters to anyone responsible for a hospital's records is duller and more useful: in one AWS region, two of three availability zones failed at the same moment. According to AWS status notes reported by The Register, the two zones were mec1-az2 and mec1-az3, and customers saw high failure rates reading and writing data. The redundancy did not collapse because it was built badly. It collapsed because the event landed one zone beyond what the design was ever meant to survive.

Read the source for what it is

This is incident reporting in the middle of a conflict — not an engineering post-mortem, and not a study. CNBC and others recorded what was hit, what went down, and who claimed it: Iran's Islamic Revolutionary Guard Corps. In a separate piece, CNBC reported on 1 April 2026 that the same body had named eighteen US technology and defence firms — Nvidia, Apple, Microsoft, Alphabet, Cisco, IBM, Oracle, Dell and Palantir among them — as “legitimate targets.” That is a threat reported by journalists, not a verified operational assessment, and it should be carried no further than that. So the evidence here is modest, and it is firm: a kinetic attack can take more than one zone of a region offline at once. What it cannot tell you is how often, how likely, or against which other providers and regions.

Two questions wearing the same clothes

The reason this incident is worth a clinician's attention is that it cleanly separates two questions the German data debate tends to fuse. The first is jurisdictional. The US CLOUD Act can compel an American company to hand over data even when the servers sit in Frankfurt, so the argument goes that patient data should rest under European jurisdiction. Call that sovereignty: who can lawfully reach the data. The second is operational: does the system keep running when part of the infrastructure is physically destroyed? Call that resilience. Both arrive disguised as the single phrase “where is the data,” which is exactly why they get conflated — and why they have entirely different failure modes.

Picture a hospital holding every copy of its records across three data centres in Frankfurt. On sovereignty, it may be in good shape. On resilience, it has answered nothing yet. If those three sites draw on shared power feeds, shared network paths, or simply a common regional fate, the electronic record has a single regional failure mode — the very shape the UAE region took on when two of its three zones went together. Concentrating critical data inside one country can deliver jurisdictional control while quietly raising exposure to the geographically bounded events — a coordinated attack, a regional disaster, a grid failure — that the concentration was never designed to withstand.

Sovereignty asks who can lawfully reach the data. Resilience asks whether it survives when part of the infrastructure does not. They are not the same question, and one does not buy the other.

What to carry into the next procurement conversation

The engineering response is unremarkable. Encrypted replication across separated jurisdictions that share neither a power grid nor a single legal regime — several European locations under harmonised data-protection law, say — answers both concerns at once, and keeps the data out of non-European reach. Whether a given architecture is the right one belongs to the people who run it and stand behind its availability targets; the reporting does not decide that, and neither does this piece. The narrower point it does support is the one worth keeping: a single figure for where the data lives tells you about jurisdiction. It says nothing about how many independent ways the system can stop at once.

Sources: Amazon says drone strikes damaged 3 facilities in UAE and Bahrain, CNBC, 2 March 2026, with availability-zone detail from AWS status notes as reported by The Register; and Iran threatens Nvidia, Apple and other tech giants, CNBC, 1 April 2026. This is contemporaneous news reporting of an unfolding conflict, not an engineering post-mortem or a study; the operational figures are AWS's own first-pass status notes and may be revised.

#Journal Club#Health IT Infrastructure#Cloud Resilience#Data Sovereignty#Risk

Keep reading

Editorial collage of a researcher's hands at a laptop beside a teal panel holding a halftone mRNA helix and a charcoal price tag marked with a single amber dot.
Journal Club

A 165-Dollar mRNA Model: What a Hugging Face Post Does and Doesn't Show

An open-source team trained codon language models across 25 species for the price of a weekend, and found that starting from an English-text model made things worse. It is a careful engineering write-up — not a clinical result, and not yet peer-reviewed.

Dr. Sven JungmannCEO

This analysis comes from the people behind Visite.

Our weekly newsletter on AI in medicine. Every Friday, rigorously checked.

By signing up you agree to receive Grand Rounds by email. Unsubscribe anytime. More in our privacy policy.

Want to see this in your hospital?

30 minutes. Your questions. Our physician-founder shows you the platform personally.

Book a demo

No commitment. No sales pitch. Physician to physician.