diff --git a/v2/pkg/passive/sources.go b/v2/pkg/passive/sources.go
index 210f892d8..df597e030 100644
--- a/v2/pkg/passive/sources.go
+++ b/v2/pkg/passive/sources.go
@@ -38,7 +38,6 @@ import (
 	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/quake"
 	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/rapiddns"
 	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/redhuntlabs"
-	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/riddler"
 	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/robtex"
 	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/securitytrails"
 	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/shodan"
@@ -80,7 +79,7 @@ var AllSources = [...]subscraping.Source{
 	&quake.Source{},
 	&rapiddns.Source{},
 	&redhuntlabs.Source{},
-	&riddler.Source{},
+	// &riddler.Source{}, // failing due to cloudfront protection
 	&robtex.Source{},
 	&securitytrails.Source{},
 	&shodan.Source{},
diff --git a/v2/pkg/passive/sources_test.go b/v2/pkg/passive/sources_test.go
index 6e9c72201..e7e69214a 100644
--- a/v2/pkg/passive/sources_test.go
+++ b/v2/pkg/passive/sources_test.go
@@ -37,7 +37,7 @@ var (
 		"quake",
 		"rapiddns",
 		"redhuntlabs",
-		"riddler",
+		// "riddler", // failing due to cloudfront protection
 		"robtex",
 		"securitytrails",
 		"shodan",
@@ -77,7 +77,7 @@ var (
 		"quake",
 		"redhuntlabs",
 		"robtex",
-		"riddler",
+		// "riddler", // failing due to cloudfront protection
 		"securitytrails",
 		"shodan",
 		"virustotal",
diff --git a/v2/pkg/passive/sources_wo_auth_test.go b/v2/pkg/passive/sources_wo_auth_test.go
index de268e7cc..c409fb85c 100644
--- a/v2/pkg/passive/sources_wo_auth_test.go
+++ b/v2/pkg/passive/sources_wo_auth_test.go
@@ -25,7 +25,7 @@ func TestSourcesWithoutKeys(t *testing.T) {
 
 	ignoredSources := []string{
 		"commoncrawl",    // commoncrawl is under resourced and will likely time-out so step over it for this test https://groups.google.com/u/2/g/common-crawl/c/3QmQjFA_3y4/m/vTbhGqIBBQAJ
-		"riddler",        // Fails with 403: There might be too much traffic or a configuration error
+		"riddler",        // failing due to cloudfront protection
 		"crtsh",          // Fails in GH Action (possibly IP-based ban) causing a timeout.
 		"hackertarget",   // Fails in GH Action (possibly IP-based ban) but works locally
 		"waybackarchive", // Fails randomly