Time: June 26, 2024, 3:23 p.m.

Status: Resolved

Update: This incident has been resolved.

Time: March 10, 2024, 1:40 a.m.

Status: Monitoring

Update: If you still experience password prompts on your Outlook clients after ruling out your third-party AV causing the issue, you should check the following registry key / value on your computer unless you have an Active Directory Group Policy Object (GPO) policy overriding your local computer. Please check with your IT admin if you have a GPO configured (Please Note, Zix/Appriver support cannot directly support GPO configurations). ---------------------------------------------------------------------------------------------------------------------------------------- From user computer: - Registry key: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa - Registry value: LmCompatibilityLevel - It must be set at least to a value of 3 which is Send NTLMv2 response only. If the key is not there the computer will default to a value of 3 unless you have an Active Directory GPO overriding the local computer. ------------------------------------------------------------------------------------------------------------------------------------------- If your admin is using Active Directory GPOs instead to set your security policy, please verify the following Policy location to ensure it is set to one of the supported values below. (Please Note, Zix/Appriver support cannot directly support GPO configurations). Policy location: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options Policy Name: Network security: LAN Manager authentication level Unsupported values Send LM & NTLM responses Send LM & NTLM - use NTLMv2 session security if negotiated Send NTLM responses only Supported values Send NTLMv2 responses only Send NTLMv2 responses only. Refuse LM Send NTLMv2 responses only. Refuse LM & NTLM Not Defined

Time: March 9, 2024, 7:59 p.m.

Status: Monitoring

Update: We are getting reports of some users unable to log into Outlook desktop but can successfully log into Outlook Web Access. There was a recent Microsoft Exchange security update that could be causing this impact if you are using an outdated non-supported version of Outlook or using an Anti-Virus service on your computer. Clients using AV that does endpoint protection of the Outlook connections could cause repeated login prompts as that would appear as a man-in-the-middle attack. Please ensure you are currently running at least Outlook 2013 (that is fully updated) or newer. *Please note however, Outlook 2013 Microsoft end of life was on April 11th, 2023, so it is further recommended to run at least Outlook 2016 or newer* If you have a third-party Anti-Virus service running on your computer, please temporarily disable the setting doing endpoint protection on Outlook connections through your AV, restart Outlook, then see if you can successfully log into Outlook. If successful, this indicates your AV could be running encrypted connection checks on Outlook connections or could be running an AV that needs to be updated. We recommend to please contact your AV service provider / support team to report this issue for assistance.

Time: April 30, 2024, 1:15 p.m.

Status: Resolved

Update: Final Update from Microsoft: We've seen drastic improvements and significant reduction in the volume of impacted messages due to our implemented optimizations. We continue to proactively identify and stop spam messages through our ML antispam systems, as well as respond and implement further adjustments manually to block messages we manually find. Given that our optimizations have been successful, and because there's no means to prevent all spam messages from ever occurring, we're declaring this event resolved. This is the final update for the event.

Time: April 18, 2024, 12:47 p.m.

Status: Monitoring

Update: Update from Microsoft: Our service health telemetry indicates that the previously mentioned service optimizations have had the desired effect, and we've observed a significant reduction in the volume of impacted messages. We're continuing to implement further optimizations to reduce or eliminate impact as quickly as possible, and in parallel we're continuing our efforts in coordination with the third-party anti-spam service to identify and implement a long-term solution to fully remediate the issue.

Time: March 28, 2024, 8:36 p.m.

Status: Monitoring

Update: Update from Microsoft: We’re continuing the process of identifying the IP addresses that are causing the third-party anti-spam service to activate and block a segment of Microsoft’s email IP address ranges. While we are seeing signs of improvements to some IP address ranges that we've identified thus far, we'll share an updated timeline for this investigation and the steps being taken to remediate the impact when more information is available.

Time: March 25, 2024, 4:09 p.m.

Status: Monitoring

Update: Update from Microsoft: We're continuing our operation to identify and isolate IP addresses which are responsible for triggering the third-party anti-spam service to block a portion of Microsoft's email IP address range, although more time is needed for this to complete. Once complete, we'll work towards mitigation by limiting the mail flow from these IP addresses.

Time: March 22, 2024, 1:17 p.m.

Status: Monitoring

Update: Update from Microsoft: Current status: Our operation to isolate the IP addresses that are causing the third-party anti-spam service to block a portion of Microsoft’s email IP address ranges is taking longer than expected. After this is complete we'll proceed with limiting the mail flow to prevent the issue from reoccurring.

Time: March 20, 2024, 12:04 p.m.

Status: Monitoring

Update: Update from Microsoft: Current status: Our mitigation efforts are underway as we continue to work with the third-party anti-spam service to monitor the relevant IP ranges and isolate which IP addresses may be responsible for the malicious email messages causing the service to block Microsoft IP ranges. We'll be able to limit the mail flow from these once identified, which should serve as a long-term solution for this issue. Scope of impact: The problem may impact some users sending outbound email messages if they're leveraging a specific third-party anti-spam service mentioned within the NDR. Root cause: A third-party anti-spam service is blocking a portion of Microsoft’s email IP address ranges to protect organizations that use their services.

Time: March 13, 2024, 1:19 p.m.

Status: Monitoring

Update: Update from Microsoft: Current status: We're continuing our efforts of working with the third-party anti-spam service to monitor the IP address ranges affected by this problem and identify which IP addresses may be causing the mass delivery of malicious email messages. Once we've isolated the IP addresses that are causing the third-party anti-spam service to block a portion of Microsoft’s email IP address ranges, we'll limit the mail flow as a long-term solution to prevent the issue from reoccurring.

Time: March 8, 2024, 8:39 p.m.

Status: Monitoring

Update: Update from Microsoft: Current status: We're continuing to work with the third-party anti-spam service to monitor the IP address ranges affected by this problem and identify which may be sources of potentially malicious email messages so we can determine our next troubleshooting steps for reducing such email messages and the frequency of those IP addresses being blocked. In parallel, we're continuing to assess potential long-term solutions to address this and similar problems in the future.

Time: March 5, 2024, 5:58 p.m.

Status: Monitoring

Update: Updated from Microsoft: Users' outbound Exchange Online email messages are marked as spam and not delivered 2024-03-06 2:48:27 PM (CST) Title: Users' outbound Exchange Online email messages are marked as spam and not delivered User impact: Users' outbound Exchange Online email messages are marked as spam and not delivered. More info: This isn’t connection method specific and thus occurs in all Exchange Online connection methods. Users will receive a Non-Delivery Report (NDR) message that references the third-party anti-spam service name that has added the IP to their block list. Current status: We're working with the third-party anti-spam service to better identify the IP ranges affected by this problem so that we can more quickly identify and manage sources of potentially malicious email messages. This will help reduce the frequency of spam and phishing email which also reduces the number of reported and blocked IPs, returning some mail flow as expected. In parallel, we're reviewing long-term solutions to preventing similar problems. Scope of impact: Your organization is impacted by this event, and the problem impacts all users sending outbound email messages. Root cause: A third-party anti-spam service is blocking a portion of Microsoft’s email IP address ranges to protect organizations that use their services. Next update by: Friday, March 8, 2024, at 9:00 PM UTC

Time: Feb. 27, 2024, 4:48 p.m.

Status: Investigating

Update: We are investigating reports of some users receiving bounce back notices indicating Microsoft 365 sending IP listed on a third party blocklist. We will post a health service alert once we have received confirmation from Microsoft. We will provide updates as we receive them.

Time: March 11, 2024, 3:41 p.m.

Status: Resolved

Update: This incident has been resolved.

Time: March 11, 2024, 3:41 p.m.

Status: Monitoring

Update: We are continuing to monitor for any further issues.

Time: Feb. 26, 2024, 6:50 p.m.

Status: Monitoring

Update: We have implemented a hot fix and our monitoring has confirmed the issue has stabilized and log ins are processing as expected now. We are actively monitoring for any further issues. We apologize for any inconvenience this may have caused.

Time: Feb. 26, 2024, 2:14 p.m.

Status: Identified

Update: We have identified an issue in which our Customer Portal is intermittently having log in failures. We have identified the root cause and are working on resolving this. In the interim, we have monitors in place and are taking proactive measures to alleviate the log in issues as they appear. We apologize for any inconvenience this may currently be causing.

Time: April 3, 2024, 1:37 p.m.

Status: Resolved

Update: This incident has been resolved.

Time: Feb. 26, 2024, 5:28 p.m.

Status: Investigating

Update: We are continuing to investigate this issue.

Time: Feb. 23, 2024, 8:22 p.m.

Status: Investigating

Update: We are actively working with Instagram to correct the issue. Once fixed, the Instagram Capture application will automatically capture historical activity since the last successful capture. Installation notifications have been turned off as we work to resolve this and will resume once issue has been fixed.

Time: Feb. 23, 2024, 1:15 a.m.

Status: Resolved

Update: We have confirmed the issue has been resolved. This appeared to be part of the larger AT&T outage experienced by their network.

Time: Feb. 22, 2024, 1:41 p.m.

Status: Investigating

Update: Our 2 Factor Authentication provider for our Customer Portal is currently experiencing issues with short codes to US based AT&T users and working on resolving this. If needed, you can configure an authenticatior app as a workaround and we will provide updates as we get them from our service provider.