Abnormal Security Status

Resolved: As of 23:40 UTC on January 16, 2026, the Account Takeover event issue affecting FedRAMP customers has been fully resolved. All Account Takeover services are now operating normally. Abnormal's core email protection services remained fully operational throughout this incident and continued to protect against threats. If customers have any questions or concerns, please contact support at [email protected].

Monitoring: Abnormal engineers have restored Account Takeover service for FedRAMP customers and are beginning to see events processing normally. Engineers continue to work towards full service restoration and are monitoring the system closely. The next update will be provided when further information becomes available.

Identified: Abnormal engineers continue to work to fully restore Account Takeover functionality for FedRAMP customers. The next update will be provided when further information becomes available.

Identified: Starting at 20:00 UTC on January 13, Abnormal began experiencing an issue affecting Account Takeover event visibility for Fedramp customers. Abnormal's core email protection services remain fully operational and continue to protect against threats. Abnormal's engineering team is actively working to restore full Account Takeover functionality.

Resolved: Between 16:40 UTC and 17:00 UTC, Abnormal experienced a service degradation with the Abnormal Portal affecting Fedramp customers. During this time, Fedramp users experienced errors when trying to load and navigate the portal, along with delays with pages loading. Remediation and detection services remained fully operational throughout the incident window.