Use cases
Software Products E-commerce MSPs Schools Development & Marketing DevOps Agencies Help Desk
Company
Internet Status Blog Pricing Log in Get started free

Outage in Pantheon

Security Advisory: Unauthorized Access via Credential Stuffing

Minor
April 15, 2026 - Started about 2 hours ago
Official incident page

Incident Report

We are currently investigating reports of unauthorized access to a small number of Pantheon customer accounts. Our evidence suggests these accounts were accessed using credentials stolen from external third-party data breaches (unrelated to Pantheon). This technique, known as "credential stuffing," relies on reused passwords. Required Actions for All Customers • Audit Your Sites: Check for unexpected code or file modifications. If you find any suspicious changes, contact Pantheon Support immediately. • Enable MFA (High Priority): Multi-factor authentication is your best defense against password theft. • Enable MFA here: https://docs.pantheon.io/guides/account-mgmt/account/mfa • Update Your Password: If you use your Pantheon password on any other site, change it immediately to a unique, strong passphrase. Next Steps: We are continuing our investigation and will provide further updates as more information becomes available.

Trusted by 1,000+ teams

Need to monitor Pantheon outages?

Stop finding out about outages from your users. Monitor 6,320+ cloud services and get alerted the second something breaks.

Start Free Trial
  • No credit card
  • 14-day trial
  • 2-minute setup
IsDown status aggregator dashboard
Latest Updates ( sorted recent to last )
INVESTIGATING about 2 hours ago - at 04/15/2026 02:27PM

We are currently investigating reports of unauthorized access to a small number of Pantheon customer accounts.
Our evidence suggests these accounts were accessed using credentials stolen from external third-party data breaches (unrelated to Pantheon). This technique, known as "credential stuffing," relies on reused passwords.

Required Actions for All Customers
• Audit Your Sites: Check for unexpected code or file modifications. If you find any suspicious changes, contact Pantheon Support immediately.
• Enable MFA (High Priority): Multi-factor authentication is your best defense against password theft.
• Enable MFA here: https://docs.pantheon.io/guides/account-mgmt/account/mfa
• Update Your Password: If you use your Pantheon password on any other site, change it immediately to a unique, strong passphrase.
Next Steps: We are continuing our investigation and will provide further updates as more information becomes available.

Latest Pantheon outages

Degraded Redis Endpoint Response - about 6 hours ago
Intermittent access issues affecting Pantheon Dashboard - 16 days ago
Intermittent access issues affecting Pantheon Dashboard and Workflow - 18 days ago
Degraded Dashboard and Terminus Performance - 20 days ago
Filesystem Access Issues - about 1 month ago

The Status Page Aggregator with Early Outage Detection

With IsDown, you can monitor all your critical services' official status pages from one centralized dashboard and receive instant alerts the moment an outage is detected. Say goodbye to constantly checking multiple sites for updates and stay ahead of outages with IsDown.

Start free trial

No credit card required · Cancel anytime · 6320 services available

Integrations with Slack Microsoft Teams Google Chat Datadog PagerDuty Zapier Discord Webhook