Abnormal Security incident

Email Productivity Remediation Delay (Graymail)

Major Resolved View vendor source →

Abnormal Security experienced a major incident on July 31, 2024 affecting Email Productivity (EPR) and Account Takeover Service (ATO), lasting 2h 36m. The incident has been resolved; the full update timeline is below.

Started
Jul 31, 2024, 12:13 AM UTC
Resolved
Jul 31, 2024, 02:49 AM UTC
Duration
2h 36m
Detected by Pingoru
Jul 31, 2024, 12:13 AM UTC

Affected components

Email Productivity (EPR)Account Takeover Service (ATO)

Update timeline

  1. investigating Jul 31, 2024, 12:13 AM UTC

    Starting at 22:10 UTC on July 30, 2024, Abnormal Security was made aware of a possible delay in remediation for Email Productivity (EPR / Graymail) due to an ongoing operational issue with our hosting provider AWS. Abnormal is continuing to assess and resolve any impact on additional services. Inbound Email Security is unaffected by the ongoing AWS issue. Affected Services: Email Productivity Severity Level: Major Incident Start Time: July 30, 2024, 22:10 UTC What We're Doing: The team continues to resolve the issue, and an update on the resolution status will be shared at the next planned update time. Next Update: In 1 hour or less. Questions?: For any immediate concerns, please contact us at [email protected].

  2. identified Jul 31, 2024, 01:42 AM UTC

    Starting at 22:10 UTC on July 30, 2024, Abnormal Security was made aware of a possible delay in remediation for Email Productivity (EPR / Graymail) due to an ongoing operational issue with our hosting provider AWS. Abnormal is continuing to assess and resolve any impact on additional services. Inbound Email Security is unaffected by the ongoing AWS issue. Update: This AWS outage is also impacting: Account Takeover: Some customers may experience a delay in lateral phishing detection. SIEM/SOAR Integrations: Some customers may experience increased time-out requests Affected Services: Email Productivity Account Takeover SIEM/SOAR Integrations Severity Level: Major Incident Start Time: July 30, 2024, 22:10 UTC What We're Doing: The team continues to resolve the issue, and an update on the resolution status will be shared at the next planned update time. Next Update: In 1 hour or less. Questions? For any immediate concerns, please contact us at [email protected].

  3. resolved Jul 31, 2024, 02:49 AM UTC

    The incident has been resolved as of 2024-07-31 02:45 UTC, Email Productivity, Account Takeover and SIEM/SOAR are now fully functional. Affected Services: Email Productivity Account Takeover SIEM/SOAR Integrations Severity Level: Major Incident Start Time: July 30, 2024, 22:10 UTC Incident Resolution Time: July 31, 2024, 02:45 UTC What We're Doing: Our team will monitor the system closely to ensure stability. We are also conducting a post-incident review to prevent similar issues in the future. Questions?: For any immediate concerns, please contact us at [email protected]