AuthFront (Authentication)

UPDATE:

Auth0 is still working to implement blocks for the various bad requests, but the changes they’ve made so far have already reduced the attack traffic and the impact is minimal at this point.

It will take some additional time for permanent fixes to be put into place. We will send another update by EoD or once we have additional details from Auth0.

UPDATE:

Though we’re still waiting for confirmation from Auth0 on the full containment of the attack, the impact seems to have subsided for over an hour now. We will keep this open until EoD or until we’ve received confirmation from Auth0. Next update is once we’ve heard back from them on the status of the mitigation process.

UPDATE:

Support teams are still actively working the issue. Sign-ups have been reenabled and are being monitored. Next update in 1 hour or sooner if we can confirm the attack has been fully blocked.

UPDATE:

Auth0 continues to work on the issue. Until we confirm the attack traffic is stopped, new account sign up using the email/password method has been disabled. Next update in 30 minutes or sooner.

UPDATE:

The issue has been raised to Auth0, who are currently working to block the sources of the attack traffic. Next update in 30 minutes or sooner.

UPDATE:

The Access team is still working on this issue and has raised an urgent ticket with Auth0. The next update will be provided in 30 minutes or less.

UPDATE:

The Access team is currently working on the issue and is contacting Auth0 for urgent support. The next update will be provided in 30 minutes or less.