4Schools incident

DDoS Attack Against Mass Notification Service Provider

Major Resolved View vendor source →

4Schools experienced a major incident on January 9, 2026 affecting CMS4Schools Mass Notifications, lasting 2d 22h. The incident has been resolved; the full update timeline is below.

Started
Jan 09, 2026, 03:51 PM UTC
Resolved
Jan 12, 2026, 02:16 PM UTC
Duration
2d 22h
Detected by Pingoru
Jan 09, 2026, 03:51 PM UTC

Affected components

CMS4Schools Mass Notifications

Update timeline

  1. identified Jan 09, 2026, 03:51 PM UTC

    Our underlying provider for mass notifications (email, text, phone, and chat) is currently experiencing a Distributed Denial of Service (DDoS) attack. This attack is leveraging a high volume of rotating IP addresses to generate excessive traffic against publicly accessible resources. We're in active communication with them as their engineering and security teams work to mitigate the impact.

  2. identified Jan 09, 2026, 05:16 PM UTC

    Messages containing URL links, images, or attachments (including newsletters and report emails) may not send successfully or may not be viewable by recipients. Chats may take longer than normal or fail to send. Core messaging remains operational, but these may be intermittently impacted while mitigation is in progress for DDoS attacks.

  3. monitoring Jan 10, 2026, 05:57 PM UTC

    A fix has been implemented and are monitoring carefully.

  4. resolved Jan 12, 2026, 02:16 PM UTC

    This incident has been resolved.