Abnormal Security incident

Inbound Email Security, AI Security Mailbox, and Portal Disruption – US and EU Tenant Customers

Critical Resolved View vendor source →

Abnormal Security experienced a critical incident on July 7, 2026 affecting Inbound Email Security (IES) and Portal Application and 1 more component, lasting 5h 46m. The incident has been resolved; the full update timeline is below.

Started
Jul 07, 2026, 10:58 PM UTC
Resolved
Jul 08, 2026, 04:44 AM UTC
Duration
5h 46m
Detected by Pingoru
Jul 07, 2026, 10:58 PM UTC

Affected components

Inbound Email Security (IES)Portal ApplicationAI Security Mailbox (AISM)

Update timeline

  1. investigating Jul 07, 2026, 10:58 PM UTC

    Starting at 22:00 UTC on July 7, 2026, Abnormal began experiencing a service disruption impacting Inbound Email Security detection and email remediation for US customers. During this time, inline customers may have emails delivered without security scoring or remediation, and Inbound Email Security detection is degraded. Additionally, AI Security Mailbox is experiencing issues within the portal which the Abnormal team is actively investigating. Our team is working to restore full functionality. The next update will be provided within 1 hour or sooner as more information becomes available.

  2. investigating Jul 08, 2026, 12:08 AM UTC

    Abnormal continues to experience a service disruption impacting Inbound Email Security detection and email remediation for US tenant customers that began at 22:00 UTC on July 7, 2026. During this time, emails may be delivered without full security analysis, and some customers may be unable to login to the Abnormal Portal. The Abnormal engineering team continues to actively work on restoring full functionality. The next update will be provided within 1 hour or sooner as more information becomes available.

  3. investigating Jul 08, 2026, 01:20 AM UTC

    As of 00:23 UTC on July 8, 2026, AI Security Mailbox and Portal services have been fully restored for US tenant customers. The Abnormal engineering team is currently deploying a mitigation for Inbound Email Security services, which are expected to be fully restored within the next 30 minutes. During this time, some emails may still be delivered without full security analysis. The next update will be provided once Inbound Email Security services are confirmed restored.

  4. investigating Jul 08, 2026, 02:33 AM UTC

    The Abnormal engineering team continues to work on restoring full Inbound Email Security services for US tenant customers. During this time, some emails may still be delivered without full security analysis. Additionally, Abnormal has identified that this issue is beginning to impact EU tenant customers, which the engineering team is actively addressing. The next update will be provided within 60 minutes or sooner as more information becomes available.

  5. monitoring Jul 08, 2026, 03:52 AM UTC

    Abnormal has begun to see early signs of recovery for Inbound Email Security services impacting US and EU tenant customers. The Abnormal engineering team continues to monitor for full recovery. During this time, some emails may still experience delayed security analysis. The next update will be provided once full recovery is confirmed.

  6. resolved Jul 08, 2026, 04:44 AM UTC

    As of 04:44 UTC on July 8, 2026, all services have fully recovered and are now live processing traffic for US and EU tenant customers. Abnormal will reprocess all messages received during the impact window to ensure full security analysis is applied. If you experience any continued issues, please reach out to the support team at [email protected].