All Systems Operational
FRA1 - XDR ? Operational
Ingestion Operational
Threat Intelligence for research & triage Operational
Automation Operational
Event storage Operational
Detection Operational
Hunting Operational
Case management Operational
Web application Operational
FRA1 - CTI ? Operational
Search Operational
API consumption Operational
TAXII consumption Operational
MISP consumption Operational
Enrichers Operational
Web application Operational
FRA2 - XDR (SecNumCloud / PCI DSS region) ? Operational
MCO1 - XDR ? Operational
EUR1 - XDR ? Operational
UAE1 - XDR ? Operational
Operational
Degraded Performance
Partial Outage
Major Outage
Maintenance
Scheduled Maintenance
Dear Customer,

We are pleased to inform you of an important update to our sekoia.io services in the FRA1 region. On 27/11/2024, we will be enhancing our security infrastructure by deploying a new Web Application Firewall (WAF) through our partner, Akamai. This change will result in an adjustment to the DNS entries for our domains, api.sekoia.io and app.sekoia.io, which will now point to a CNAME on Akamai's infrastructure instead of a previous A record. The same operation will be done for MCO1 and UAE1 regions.

It is important to note that such DNS changes have been implemented successfully in the past without any reported issues. Our team has thoroughly planned this transition to ensure continued stability and security for your operations.

Please be reminded that implementing IP filtering based on the current DNS entries for these domains is not recommended. As DNS-based infrastructures evolve, filtering by IP could disrupt access to our services. As always, we are committed to maintaining maximum security and uninterrupted service for our users.

Should you have any questions or need further assistance, please do not hesitate to contact our support team.

Thank you for your continued trust in sekoia.io.

Posted on Nov 19, 2024 - 10:15 CET
Past Incidents
Nov 20, 2024
Resolved - Events are processed in real-time since 17:39 CET, everything is stable.
Nov 20, 18:27 CET
Monitoring - During a service update on the region, we encountered an issue with our event processing.
It has been stopped for around an hour, since 15:33.
We have fixed the issue and it is now consuming again, we are catching up on the delay.
We expect around 1h before coming back to real-time processing.

Nov 20, 16:41 CET
Resolved - This incident has been resolved.
Nov 20, 14:12 CET
Monitoring - A fix has been implemented and we are now catching up on the lag.
We will keep monitoring closely and keep this status page open until we have no more delay on events processing.

Nov 20, 11:09 CET
Investigating - We are investigating an issue with our events processing pipeline which has bad performance since 09:27 CET.
Events processing is taking lag, which impacts alerts raising.

Nov 20, 10:46 CET
Nov 19, 2024

No incidents reported.

Nov 18, 2024

No incidents reported.

Nov 17, 2024

No incidents reported.

Nov 16, 2024

No incidents reported.

Nov 15, 2024

No incidents reported.

Nov 14, 2024

No incidents reported.

Nov 13, 2024

No incidents reported.

Nov 12, 2024

No incidents reported.

Nov 11, 2024

No incidents reported.

Nov 10, 2024

No incidents reported.

Nov 9, 2024

No incidents reported.

Nov 8, 2024

No incidents reported.

Nov 7, 2024

No incidents reported.

Nov 6, 2024
Resolved - The platform is consuming events in real-time since 19:09 CET.
This incident has been resolved.

Nov 6, 19:26 CET
Update - A good part of the backlog has already been processed.
The platform's detection is estimated to be back in real-time at 19:05 CET.
We will keep monitoring closely until that time.

Nov 6, 18:08 CET
Monitoring - The event processing is stable and we are catching up on lag slowly.
We can expect to be back in real-time in a couple hours due to the volume of events backlog that we have.
We will keep you updated on this.

Nov 6, 16:39 CET
Update - We were able to mitigate the issue, our events processing pipeline is back up.
The platform is now consuming lag, we are monitoring this closely.

Nov 6, 16:12 CET
Identified - We lost several servers in a few minutes due to a network issue on our cloud-provider side.
Our event ingestion pipeline is safe from impact and we are still receiving every events.
However, our events processing pipeline is stopped since 15:23 CET, and we are taking lag on events processing and alerts raising.
We are currently reaching our cloud provider support to get more information in order to resolve this incident as fast as possible.

Nov 6, 15:52 CET