Use cases
Software Products E-commerce MSPs Schools Development & Marketing DevOps Agencies Help Desk
Company
Internet Status Blog Pricing Log in Get started free

Outage in Expel

Alert ingestion delayed for a subset of security devices

Resolved Major
April 20, 2026 - Started 16 days ago - Lasted about 5 hours
Official incident page

Incident Report

Summary AI Generated

A change to Expel's device credentials storage subsystem caused invalid credentials for a subset of security devices, making them unhealthy and preventing alert ingestion for approximately one week before detection. The incident affected alert ingestion capabilities for the impacted devices, creating a backlog of unprocessed security alerts. Expel identified the affected devices, restored their credentials, and confirmed that delayed alerts were ingested once the devices returned to a healthy state.

At 10:59AM EDT, we noticed that a set of devices have been unhealthy since last week due to invalid credentials. We believe the cause to be a change to our device credentials storage subsystem. We are working to identify the specific set of devices and restore the credentials. Once restored, all delayed alerts will be ingested. We will provide an updated by 1pm EDT.
Components affected
Expel Alert ingestion

Trusted by 1,000+ teams

Never miss outages in third-party dependencies

Stop finding out about outages from your users. Monitor 6,320+ cloud services and get alerted the second something breaks.

Start Free Trial Learn More
IsDown status aggregator dashboard
Latest Updates ( sorted recent to last )
RESOLVED 15 days ago - at 04/20/2026 08:54PM

We restored the credentials for the subset of devices, and are seeing that the majority of devices have returned to a healthy state. We investigated the remaining unhealthy devices, which are not related to the customer secrets vault upgrade. This incident is resolved.

MONITORING 15 days ago - at 04/20/2026 08:01PM

We restored the credentials for the subset of devices, and are seeing that the majority of devices have returned to a healthy state. We are investigating the remaining unhealthy devices, which do not seem related to credentials. We will provide another update by 4:30pm EDT.

MONITORING 15 days ago - at 04/20/2026 07:34PM

We restored the credentials for the subset of devices, and are seeing that the majority of devices have returned to a healthy state. We are investigating the remaining unhealthy devices, which do not seem related to the credentials. We will provide another update by 4:00pm EDT.

IDENTIFIED 15 days ago - at 04/20/2026 07:02PM

We have restored the credentials for the subset of devices. We are monitoring closely to ensure proper ingestion of delayed alerts. We will provide another update by 3:30pm EDT.

IDENTIFIED 15 days ago - at 04/20/2026 06:34PM

We have restored the credentials for the affected subset of devices. We are monitoring closely to ensure proper ingestion of delayed alerts. We will provide another update by 3:00pm EDT.

INVESTIGATING 15 days ago - at 04/20/2026 06:01PM

We have identified the specific subset of devices that are affected and are working on restoring the credentials for those devices. Once restored, all alerts that have not been ingested for these devices will be ingested. We will provide another update by 2:30pm EDT.

INVESTIGATING 15 days ago - at 04/20/2026 05:35PM

We have identified the specific subset of devices that are affected and are working on restoring the credentials for those devices. Once restored, all alerts that have not been ingested for these devices will be ingested. We will provide another update by 2:00pm EDT.

INVESTIGATING 16 days ago - at 04/20/2026 05:00PM

We have identified the specific subset of devices that are affected and are working on restoring the credentials for those devices. Once restored, all alerts that have not been ingested for these devices will be ingested. We will provide another update by 1:30pm EDT.

INVESTIGATING 16 days ago - at 04/20/2026 04:20PM

At 10:59AM EDT, we noticed that a set of devices have been unhealthy since last week due to invalid credentials. We believe the cause to be a change to our device credentials storage subsystem. We are working to identify the specific set of devices and restore the credentials. Once restored, all delayed alerts will be ingested. We will provide an updated by 1pm EDT.

Latest Expel outages

Security Device Credentials Availability - 4 days ago
Delayed Notifications - 10 days ago
Workbench Unable To Deliver Microsoft Teams Notifications - about 1 month ago
Alert Ingestion Outage for AWS GuardDuty - 2 months ago
Workbench Outbound Notifications Delay - 3 months ago

Never miss outages in third-party dependencies

With IsDown, you can monitor all your critical services' official status pages from one centralized dashboard and receive instant alerts the moment an outage is detected. Say goodbye to constantly checking multiple sites for updates and stay ahead of outages with IsDown.

Start free trial

No credit card required · Cancel anytime · 6320 services available

Integrations with Slack Microsoft Teams Google Chat Datadog PagerDuty Zapier Discord Webhook