Postmortem: October 10, 2021 incident
Sunday October 10th, an incident impacted our main platform.
Alerts and incidents
Gandi’s email service impacted by “UCEPROTECT” blacklisting
Several customers have reported problems with sending email to certain contacts. Our investigation.
WordPress force-updates Loginizer plugin to fix a severe vulnerability
In a rare move this week, WordPress forced an update to patch a serious vulnerability in a plugin.
Why we blocked mailbox creation for some accounts
Last week we quietly introduced a new security feature on our Gandi mail product. Quietly because, well, it should have been done before.
Postmortem: September 30 storage incident
On September 30, 2020 at 05:38 UTC, one of our storage units used by our hosting services in FR-SD3 went down.
At 11:52 UTC we managed to bring the storage unit back online.
Postmortem regarding the Network Incident from September 15, 2020 on IAAS and PAAS FR-SD3, FR-SD5, and FR-SD6
During scheduled maintenance aimed at replacing network equipment in the FR-SD5 datacenter, an error in the architecture and configuration caused two distinct service interruptions on PaaS and IaaS in the […]
WordPress File Manager vulnerability—actions and advice
A “zero-day” vulnerability was recently discovered in the “File Manager” plugin widely used by the WordPress community. As a result, millions of WordPress sites have been attacked so far this month.
A root certificate expired on May 30, 2020
Up until May 30, 2020, there were two verification chains that were used to create a secure connection using a Gandi SSL certificate
2FA—Safer than just a password
It’s as important as ever to keep your accounts safe. Beyond passwords, you can use two-factor authentication to help keep your account safe.
Cybercrime and COVID-19
Cybercrime has seriously increased during the COVID-19 crisis. Here’s what to watch out for and what Gandi is doing.
Security vulnerability on a WordPress plugin—actions and advice
A vulnerability on a WordPress plugin developed by ThemeGrill has recently been discovered and attackers have been actively exploiting it in the past few days. This plugin is widely used by WordPress users.
Postmortem of the failure of one hosting storage unit at LU-BI1 on January 8, 2020
Context, technical timeline and postmortem