Between June 3rd and July 1st, a threat actor successfully bypassed our CDN cache (Cloudflare) and repeatedly engaged in cache busting against our platform cache (Pantheon). This Denial of Service (DoS) attack led to intermittent downtime throughout the month of June, impacting the availability of our marketing site.
Actions Taken
- Mitigated the vulnerability at both the CDN and platform levels - Implemented additional WAF rules to monitor and block suspicious headers and query parameters - Enhanced logging and monitoring to detect and respond to similar future attacks promptly
We will continue to closely monitor our systems to ensure the effectiveness of these measures and to promptly address any new violations.
The other two June 2024 marketing incidents can be attributed to this.