Our Team is still implementing anti-DDoS measures and actively monitoring the situation.
The bot traffic pattern observed is specifically designed to bypass standard protection layers, including Cloudflare/CloudFront solutions typically used to mitigate such hybrid attacks. Our engineering team has been actively implementing additional in-house mitigation measures to manage and reduce the impact.
The situation remains under close monitoring. Our API, SDK, and Sumsub domain continue to operate without major interruptions, with only occasional short-lived disruptions (typically lasting up to 5 minutes) during the rollout of additional protection measures in response to evolving attack patterns.
Our teams remain fully engaged in mitigation and stabilization efforts.
Posted May 19, 2026 - 08:35 UTC
Monitoring
The source of the ongoing DDoS attack has been identified, and mitigation measures have been applied to minimize the impact on platform stability and service availability.
Our teams continue to closely monitor the infrastructure and traffic patterns. While the situation has stabilized, some intermittent disruptions may still occur during the monitoring period.
Posted May 18, 2026 - 07:37 UTC
Identified
We have identified ongoing DDoS attack activity affecting parts of our infrastructure, which may result in intermittent service disruptions and increased response times for some customers.
Our engineering and infrastructure teams are actively working on mitigation measures and continuously monitoring platform stability. We are prioritizing service availability restoration and will continue providing updates as the situation evolves.
Posted May 18, 2026 - 07:15 UTC
Investigating
We are currently experiencing another DDoS attack affecting parts of our infrastructure and service availability.
Our engineering and infrastructure teams are actively applying mitigation measures and closely monitoring platform stability. Some services may experience intermittent disruptions or increased response times during this period.
We will continue to provide updates as more information becomes available.
Posted May 18, 2026 - 05:42 UTC
This incident affects: EU (WebSDK), UAE (WebSDK), and SGP (WebSDK).