Data Services
We are investigating elevated errors to our configuration features within our Security Console & API services.
All other products and services are unaffected by this incident.
Our engineers have identified the contributing factor and are applying a fix to our Security Console & API.
All other locations and services are unaffected.
Engineering has confirmed the impact to our Security Console & API services has been mitigated.
Engineering has confirmed that configuration features within our Security Console & API services has been fully restored. Customers may have experienced 404 errors when enabling, disabling, or configuring security protection features from the 3rd of December 2024 at 17:00 to the 4th of December 2024 at 16:19 UTC.
This incident is resolved.
Affected customers may have experienced impact to varying degrees and to a shorter duration than as set forth above.
To offer feedback on our status page, click "Give Feedback"
Status Post, Created Date/Time: 2024-12-04 16:38:03 UTC
Note: Our Customer Escalation Management team will update the start date and time of the initial "investigating" status post upon the resolution of this incident. This update is meant to provide our customers and their end users with a potential impact window. The date and time mentioned in the message above indicates when the status post was requested by our Acute Incident Response team.
Fastly Engineers detected a performance impacting event affecting the Security Console & API service.
All other data centers and services were unaffected. The issue has been resolved and we are monitoring performance closely.
Fastly Engineers detected a performance impacting event affecting the Dashboard Data, Data Services for customer using Edge WAF as part of our NextGen WAF product.
All other data centers and services were unaffected. The issue has been resolved and we are monitoring performance closely.
Fastly is extending our launch of a unified login experience across Fastly and Signal Sciences consoles. This launch makes it simpler and easier for you to access Fastly products and services using a single set of login credentials. Continuing from today, 28th of March 2024 to the 30th of April 2024, we will gradually rollout our new web interface as part of the upgraded login experience. A summary of the main changes appears below.
What's changing?
Single set of credentials to login to Fastly and Signal Sciences console. Simplified login will allow you to use a single set of login credentials to access all products and features across Fastly's suite of offerings. If you have both Fastly and Signal Sciences accounts that use the same email address and use password and 2FA for authentication, you can use Fastly credentials to log in to both Fastly and Signal Science console.
Log in once and access both accounts. You have to sign-in only once and can switch between Fastly or Signal Sciences console seamlessly without having to log in again if you use the same email address.
Password and 2FA management in one place. You'll be able to change passwords and set up two-factor authentication directly in the Fastly console for both Fastly and Signal Sciences accounts.
Service Provider initiated SSO is now supported. You can log in directly at either Fastly or Signal Sciences console login page using SSO without going to your IdP page.
Password reset got simpler. You can reset your passwords without having to create a temporary password.
Account linking will no longer be required. Customers with both Fastly and Signal Sciences accounts will no longer need to manually link those accounts. Already have linked accounts? You won't need to do anything and can start using your Fastly credentials immediately.
New passwords will be required to conform to NIST guidelines. The complexity for new and changed passwords will be required to conform to digital identity guidelines from the National Institute of Standards and Technology (specifically, the NIST800-63B guidelines). Existing passwords won't be affected until you choose to update them.
Session timeouts will be standardized and more secure. We added additional measures to increase your security posture on the Fastly platform. You will be logged out after 30 minutes of inactivity. Session timeouts will also have a default maximum of 12 hours for any organization that hasn't set up single sign-on.
What's next? What do I have to do?
That's it!. The transition will be seamless and you are not required to take additional steps. You will see a new login experience when we enable this feature for you.
Please refer to documentation for additional information.
Still have questions? Feel free to contact your account manager or customer support for additional details.
Fastly is excited to announce the launch of a unified login experience across Fastly and Signal Sciences consoles to make it simpler and easier for you to access Fastly products and services using a single set of login credentials. Starting today, the 20th of February 2024, we'll be doing a gradual rollout of a new web interface as part of the upgraded login experience. A summary of the main changes appears below.
What's changing?
Single set of credentials to login to Fastly and Signal Sciences console. Simplified login will allow you to use a single set of login credentials to access all products and features across Fastly's suite of offerings. If you have both Fastly and Signal Sciences accounts that use the same email address and use password and 2FA for authentication, you can use Fastly credentials to log in to both Fastly and Signal Science console.
Log in once and access both accounts. You have to sign-in only once and can switch between Fastly or Signal Sciences console seamlessly without having to log in again if you use the same email address.
Password and 2FA management in one place. You'll be able to change passwords and set up two-factor authentication directly in the Fastly console for both Fastly and Signal Sciences accounts.
Service Provider initiated SSO is now supported. You can log in directly at either Fastly or Signal Sciences console login page using SSO without going to your IdP page.
Password reset got simpler. You can reset your passwords without having to create a temporary password.
Account linking will no longer be required. Customers with both Fastly and Signal Sciences accounts will no longer need to manually link those accounts. Already have linked accounts? You won't need to do anything and can start using your Fastly credentials immediately.
New passwords will be required to conform to NIST guidelines. The complexity for new and changed passwords will be required to conform to digital identity guidelines from the National Institute of Standards and Technology (specifically, the NIST800-63B guidelines). Existing passwords won't be affected until you choose to update them.
Session timeouts will be standardized and more secure. We added additional measures to increase your security posture on the Fastly platform. You will be logged out after 30 minutes of inactivity. Session timeouts will also have a default maximum of 12 hours for any organization that hasn't set up single sign-on.
What's next? What do I have to do?
That's it!. The transition will be seamless and you are not required to take additional steps. You will see a new login experience when we enable this feature for you.
Please refer to documentation for additional information.
Still have questions? Feel free to contact your account manager or customer support for additional details.
This maintenance has been extended and further updates will be shared on Continued Feature Launch: Unified Fastly and Signal Sciences Login Experience
This issue has been identified and a fix is being implemented.
A fix has been implemented and we are monitoring the results.
This incident has been resolved.
Our teams have detected an issue that is currently impacting Signal Sciences data collectors. New events from agents may not be processed by our back end services, agents may erroneously appear to be offline, and agents may not be receiving updated rules sets. Rate limit rules may not perform as expected. Customers may experience also delays in data available in the Signal Sciences console.
A fix has been implemented and we are monitoring the results.
This incident has been resolved.
We are continuing to investigate and monitor this issue as an isolated incident, please continue to send and monitor ticket updates via email (securitysupport@fastly.com) while we investigate.
Issue has been isolated and determined to be impacting customers whom have enabled SSO and have not accepted the invite sent from the console. Logging in directly from SSO will prevent customers from viewing, updating and interacting with tickets in the console. Fastly advises customers to accept the invite send from the console to resolve their issues with ticket logging and interactions.
Fastly is aware of an expected critical vulnerability the OpenSSL project is expected to disclose in the near future. We are studying the currently available information surrounding this vulnerability and do not currently believe that Signal Sciences is vulnerable. We will continue to monitor as additional information is released and will provide our customers with more information as available.
Fastly has reviewed the initial notification from OpenSSL regarding CVE-2022-3786 and CVE-2022-3602. We have analyzed the versions of OpenSSL in use at Fastly, and verified that we do not use OpenSSL 3.x. Fastly and customer usage of Fastly services are not vulnerable to CVE-2022-3786 or CVE-2022-3602.