Time: Sept. 19, 2023, 10:29 p.m.

Status: Resolved

Update: The incident has been resolved. Julota rotates SSL certificates annually to upgrade security to the latest, industry leading encryption. At approximately 1:25 pm MST, Julota's SSL certificate for "reach.julota.com" became expired and a new certificate was to be rotated into the platform. We have identified an error in our SSL certificate rotation that prevented the new certificate from being installed as expected, resulting in the existing SSL certificate for "reach.julota.com" remaining in effect, which shortly after expired. At approximately 2:20 pm MST, the new SSL certificate was successfully installed and revalidated by a Certificate Authority (CA), replacing the existing expired certificate. Please rest assured, all connections were still secure during this timeframe, ensuring all data was received and transmitted safely and securely using TLS v1.2 and AES-256 encryption. There was no gap in security nor lowered or missing encryption -- the Julota platform is not accessible without valid encryption in place. We will be updating our procedures to address the series of events that led to this predicament to ensure our SSL certificate rotation process does not experience a disruption like this in the future. We sincerely apologize for any inconvenience this may have caused. Some Users accessing Julota via a browser, such as Chrome, may have received a page showing the connection was not secure and were prevented from logging in. Some browsers may have shown a message similar to "Your connection is not private" and "Attackers might be trying to steal your information from reach.julota.com". Unfortunately, messages like this are very generic and can often lead to a misunderstanding of the actual issue. The issue was directly related to "ERR_CERT_DATE_INVALID", which is a message indicating the SSL certificate has passed it's validation date and had nothing to do with attackers or unencrypted connections. Normally, our SSL certificate rotation process prevents this from becoming an issue but the SSL certificate did not rotate as expected. Some Users may have also found a way around this issue by using a different browser or validating the connection themselves and were able to continue working per normal. Some Users that were already logged in were able to continue working as expected. Please reach out to your Julota representative if you have any questions or concerns.

Time: Sept. 19, 2023, 8:40 p.m.

Status: Identified

Update: We have identified an error in our SSL certificate rotation that prevented the new certificate from being installed as expected. All connections remained secure and data was retrieved and transferred safely and securely. The new SSL certificate has been successfully installed and all browsers will now show the green pad lock indicating secure as expected.

Time: Sept. 19, 2023, 8:39 p.m.

Status: Investigating

Update: We are currently investigating an issue related to the Julota Reach SSL Certificate.

Time: July 25, 2023, 8:16 p.m.

Status: Resolved

Update: The issue with our upstream telecom carrier has been resolved. All failed faxes have been resent.

Time: July 24, 2023, 9:37 p.m.

Status: Identified

Update: We have identified an issue with our upstream telecom carrier that is causing inbound and outbound faxing failures. We are in close contact with them to work through this issue. Once the issue is resolved, all failed faxes will be resent. We will provide updates as we have them.

Time: April 25, 2023, 1:51 p.m.

Status: Resolved

Update: All SMS/Text messages through all carriers seem to be fully operational. We will continue to monitor the incident while network maintenance for carriers are underway.

Time: April 24, 2023, 3:10 p.m.

Status: Monitoring

Update: Julota utilizes a third-party service to deliver SMS/Text messages through all carriers in the United States. Currently, this third-party service is having connectivity issues and intermittent delays in delivering SMS/Text messages. Not all carriers are affected and some Users will still be able to receive messages. This incident affects login tokens and SMS/Text alerts. We will be monitoring this issue and will report changes in status when possible.

Time: March 22, 2023, 5:49 p.m.

Status: Postmortem

Update: Between the time of 08:22 am and 08:42 am MST on 03/22/2023, some Julota Users experienced an issue when trying to log in. Impacted Users would have seen an error stating “Cannot connect to server” when attempting to log or complete Multi-Factor Authentication message. Users may have seen this error but with multiple login attempts succeeded to log into Julota. This incident affected a small number of Julota Users during the incident timeframe. One of our authentication nodes became "unhealthy" and could not process login requests. The node was removed from our system and replaced with a "healthy" node that can successfully respond to login requests. We have identified a gap in our High Availability automation and testing coverage for our Authentication nodes and will be updating our automation and monitoring to cover address this gap. Normally, when a node is identified by the Julota platform as "unhealthy", the node is automatically replaced behind the scenes and the issue resolves itself within a few minutes. Due to that gap, the node was not marked as unhealthy and was not automatically replaced, but required manual replacement. The updates to the automation and monitoring that we are currently undergoing as high priority will help with prevention of issues like this and automatic replacement in the future. We apologize for this inconvenience and especially to the Users affected.

Time: March 22, 2023, 5:44 p.m.

Status: Resolved

Update: This incident has been resolved.

Time: March 22, 2023, 3:30 p.m.

Status: Monitoring

Update: At this time, all issues related to logging in should be resolved. We will continue monitoring to ensure no further issues arise.

Time: March 22, 2023, 3:01 p.m.

Status: Identified

Update: We have identified an issue that prevented some Julota instances and/or Users from being able to connect to our servers for authentication. We are actively working on a resolution.

Time: March 22, 2023, 2:50 p.m.

Status: Investigating

Update: We are currently investigating this issue.

Time: March 14, 2023, 9:53 p.m.

Status: Resolved

Update: Some of the instances on the Julota stack have been scheduled for retirement by AWS. Services will undergo a migration and restart onto new hardware. This process may cause up to 5 minutes of disruption in outbound internet connections originating from Julota. Services expected to be impacted or have a slight delay are: login tokens, notifications, alerts, automated reports, automated data extractions, and interfaces.