As of 23:40 UTC on January 16, 2026, the Account Takeover event issue affecting FedRAMP customers has been fully resolved. All Account Takeover services are now operating normally. Abnormal's core email protection services remained fully operational throughout this incident and continued to protect against threats. If customers have any questions or concerns, please contact support at support@abnormalsecurity.com.
Posted Jan 15, 2026 - 16:05 PST
Monitoring
Abnormal engineers have restored Account Takeover service for FedRAMP customers and are beginning to see events processing normally. Engineers continue to work towards full service restoration and are monitoring the system closely. The next update will be provided when further information becomes available.
Posted Jan 15, 2026 - 15:37 PST
Update
Abnormal engineers continue to work to fully restore Account Takeover functionality for FedRAMP customers. The next update will be provided when further information becomes available.
Posted Jan 15, 2026 - 13:40 PST
Identified
Starting at 20:00 UTC on January 13, Abnormal began experiencing an issue affecting Account Takeover event visibility for Fedramp customers. Abnormal's core email protection services remain fully operational and continue to protect against threats. Abnormal's engineering team is actively working to restore full Account Takeover functionality.
Posted Jan 15, 2026 - 12:39 PST
This incident affected: Abnormal Gov (Account Take Over (ATO)(Fedramp)).