All Systems Operational

Uptime over the past 90 days. View historical uptime.
Inbound Email Security (IES) Operational
90 days ago
99.93 % uptime
Today
Email Productivity (EPR) Operational
90 days ago
100.0 % uptime
Today
Account Takeover Service (ATO) Operational
90 days ago
100.0 % uptime
Today
AI Security Mailbox (AISM) Operational
90 days ago
99.98 % uptime
Today
AI Phishing Coach (AIPC) Operational
90 days ago
100.0 % uptime
Today
Misdirected Email Prevention Operational
90 days ago
100.0 % uptime
Today
Platform Operational
90 days ago
99.99 % uptime
Today
Portal Application Operational
90 days ago
99.99 % uptime
Today
Security Information and Event Management API (SIEM API) Operational
90 days ago
100.0 % uptime
Today
Security Orchestration, Automation Response API (SOAR API) Operational
90 days ago
99.97 % uptime
Today
Customer Support Portal Operational
90 days ago
99.97 % uptime
Today
Abnormal Gov Operational
90 days ago
99.9 % uptime
Today
Inbound Email Security (IES)(Fedramp) Operational
90 days ago
100.0 % uptime
Today
Email Productivity (EPR)(Fedramp) Operational
90 days ago
100.0 % uptime
Today
Account Take Over (ATO)(Fedramp) Operational
90 days ago
100.0 % uptime
Today
AI Security Mailbox (AISM)(Fedramp) Operational
90 days ago
99.22 % uptime
Today
Customer Support Portal (Fedramp) Operational
90 days ago
100.0 % uptime
Today
Security Information and Event Management API (SIEM API) (Fedramp) Operational
90 days ago
100.0 % uptime
Today
Security Orchestration, Automation Response API (SOAR API) (Fedramp) Operational
90 days ago
100.0 % uptime
Today
Portal Application (Fedramp) Operational
90 days ago
100.0 % uptime
Today
Operational
Degraded Performance
Partial Outage
Major Outage
Maintenance
Major outage
Partial outage
No downtime recorded on this day.
No data exists for this day.
had a major outage.
had a partial outage.

No incidents or maintenance related to this downtime.

May 30, 2026
Account Takeover – Delayed Sign-In Event Processing (Microsoft M365 Customers)
Resolved - Microsoft services have fully recovered from the degraded M365 sign-in audit log delivery, and Abnormal services have also recovered as of 09:41 UTC on May 30, 2026. Abnormal engineering has initiated a reprocess to ensure all Account Takeover detections from the impacted time window are properly processed. No sign-in data was lost during this event. If you experience any further issues, please reach out to Abnormal support at support@abnormalsecurity.com.
May 30, 09:14 PDT
Update - Microsoft has confirmed the root cause of the degraded M365 sign-in audit log delivery has been fixed and services are currently recovering. Microsoft estimates full recovery within approximately 7 hours. Once Microsoft services complete recovery, Abnormal expects Account Takeover detection to begin processing normally and will work through the backlog of sign-in events from this incident. No data has been lost. Abnormal will post a final resolved update once Microsoft confirms full restoration and backlog processing is complete.
May 29, 15:43 PDT
Identified - Microsoft has confirmed that the degraded delivery of M365 sign-in audit logs was caused by a power event in their West US 2 datacenter, which began at 04:27 UTC on May 29, 2026. Microsoft has reported that their service is on a recovery path and is currently processing the accumulated backlog, including sign-in stream data. As a result, customers using Account Takeover detection with Microsoft M365 may continue to experience delays in the creation of detection cases based on sign-in activity until the backlog is fully consumed. No sign-in data has been lost, and Abnormal has adjusted processing to account for the delay and ensure no detections are missed. All other Account Takeover data sources continue to operate at full capacity. Abnormal will continue to monitor and provide a further update once Microsoft confirms full recovery. If you have any questions, please reach out to Abnormal support at support@abnormalsecurity.com.
May 29, 15:23 PDT
Update - We are continuing to investigate this issue.
May 29, 08:31 PDT
Investigating - Starting at 04:27 UTC on May 29, 2026, Microsoft is experiencing degraded delivery of M365 sign-in audit logs due to an issue on Microsoft's infrastructure. As a result, customers using Account Takeover detection with Microsoft M365 may see a delay of up to 90 minutes in the creation of detection cases based on sign-in activity. No sign-in data is being lost, and Abnormal has adjusted processing to account for the delay and ensure no detections are missed. All other Account Takeover data sources continue to operate at full capacity. Abnormal is actively monitoring the situation and will provide updates as it evolves. If you have any questions, please reach out to Abnormal support at support@abnormalsecurity.com.
May 29, 08:25 PDT
May 29, 2026
May 28, 2026

No incidents reported.

May 27, 2026

No incidents reported.

May 26, 2026

No incidents reported.

May 25, 2026

No incidents reported.

May 24, 2026

No incidents reported.

May 23, 2026

No incidents reported.

May 22, 2026

No incidents reported.

May 21, 2026

No incidents reported.

May 20, 2026

No incidents reported.

May 19, 2026

No incidents reported.

May 18, 2026
Emails Incorrectly Remediated – Inbound Email Security and AI Security Mailbox
Resolved - Starting at 22:00 UTC on May 18, 2026, Abnormal identified an increase in legitimate emails being incorrectly flagged as malicious and remediated, impacting Inbound Email Security and AI Security Mailbox. The engineering team identified and disabled the rule responsible for falsely flagging these emails at 01:03 UTC on May 19, 2026. Messages affected during the impact window will be reprocessed.
May 18, 16:24 PDT
May 17, 2026

No incidents reported.

May 16, 2026

No incidents reported.

Incident History Powered by Atlassian Statuspage