SecurID incident

SecurID Service Incident - RSA Authenticate app and SecurID app on Android OS

Minor Resolved View vendor source →

SecurID experienced a minor incident on October 17, 2021 affecting Android, lasting 1h 23m. The incident has been resolved; the full update timeline is below.

Started
Oct 17, 2021, 04:45 PM UTC
Resolved
Oct 17, 2021, 06:09 PM UTC
Duration
1h 23m
Detected by Pingoru
Oct 17, 2021, 04:45 PM UTC

Affected components

Android

Update timeline

  1. investigating Oct 17, 2021, 04:45 PM UTC

    We have detected an issue affecting the SecurID Cloud Authentication Service users using Android devices. SecurID team is investigating the issue and will post updates as they become available.

  2. investigating Oct 17, 2021, 05:18 PM UTC

    The SecurID Team continues to investigate this issue. We will provide an update as soon as more information is available. Thank you, The SecurID Team

  3. identified Oct 17, 2021, 05:27 PM UTC

    SecurID has identified an issue with the use of Google SafetyNet API. The SafetyNet API is used to check device compliance and detect rooted/compromised Android devices. As a mitigation to this service disruption SecurID has temporarily disabled the use of SafetyNet. Customers will need to close and restart the Authenticate application : Open Setting on the impacted Android devices, Select Apps, then Authenticate app; then select "Force stop". Or the end user can reboot the device for this change to take affect. SecurID continues to investigate this issue. Thank you, The SecurID Team

  4. resolved Oct 17, 2021, 06:09 PM UTC

    The issue related to the Authenticate App on Android devices has been resolved. We will continue to investigate this issue, and will publish a root cause as soon as possible. Thank you, The SecurID Team

  5. postmortem Oct 20, 2021, 09:28 PM UTC

    Between 10:44 UTC and 11:30 UTC on October 17, 2021, the Authenticate app and the SecurID app on Android devices were affected by an issue involving the SafetyNet Attestation API. This API reported Android devices as non-compliant regardless of make and model. SecurID temporarily disabled the API on October 17th. Later in the day, Google acknowledged an issue with the API. SecurID resumed using the API on Monday, October 18th, after Google fixed the issue, and SecurID validated the fix. Google has resolved and posted information on the [incident](https://status.firebase.google.com/incidents/dkXbnYKe9fJ13dLGiHZk). We apologize for any inconvenience. Thank you, The SecurID Team