Imperva incident

[INC-1028]Third-Party Network Issue Impacting CWAF and DDoS Protection Services

Major Ongoing View vendor source →

Imperva is currently experiencing a major incident affecting Ashburn, VA (IAD) and Cloud WAF Protection and 1 more component, which began 3h ago. The vendor's full update timeline is below.

Started
May 10, 2026, 01:35 PM UTC
Resolved
Ongoing
Duration
● 2h 35m
Detected by Pingoru
May 10, 2026, 01:35 PM UTC

Affected components

Ashburn, VA (IAD)Cloud WAF ProtectionBarcelona, Spain (BCN)Amsterdam, Netherlands (RTM)Frankfurt, Germany (HHN)Copenhagen, Denmark (CPH)Dallas, TX (DFW)Queretaro, Mexico (QRO)Denver, CO (DEN)Detroit, MI (DET)Houston, TX (HOU)L3/4 Network DDoS ProtectionLondon, UK (LCY)Madrid, Spain (MAD)Paris, France (PAR)Vienna, Austria (GRZ)Warsaw, Poland (WAR)

Update timeline

  1. investigating May 10, 2026, 01:35 PM UTC

    A third-party internet service provider is currently experiencing an issue resulting in degradation of CWAF and Network DDoS services. Customers may experience elevated latency or, in some cases, temporary loss of availability for CWAF-protected sites. This impact includes CloudWAF customers using Origin POP and Network DDoS customers utilizing Mesh. Customer websites remain fully protected during this time. The next Status Update on this Incident will be provided no later than 14:05 UTC.

  2. monitoring May 10, 2026, 02:54 PM UTC

    Technical teams have performed remedial actions and services are returning to normal operations. The status updates are an integral part of proactive monitoring and transparent communication about the status of our cloud services. Imperva investigates and attributes a status to all detected events that may or may not affect availability of the service. In the event of a service disruption, the update will include potential impacts to any affected region.

  3. monitoring May 10, 2026, 03:02 PM UTC

    We are continuing to monitor for any further issues.