A fix has been implemented and we are monitoring the results.
Posted Oct 14, 2025 - 14:45 GMT-03:00
Identified
The excessive email traffic originated from an internal marketing campaign sent through HEFLO’s own marketing tool, not from the application.
This temporarily exhausted the Amazon SES quota, causing intermittent delivery delays. The campaign was paused, quotas were restored, and service is now fully operational.
No data was exposed. Preventive measures are in place to avoid recurrence.
Posted Oct 14, 2025 - 14:44 GMT-03:00
Investigating
We are currently observing a new occurrence of excessive usage on our email-sending connector, which may cause temporary instability (delays or delivery failures). This is similar to the situation experienced earlier this week, and our team is actively mitigating it by enforcing additional rate limits and validating outbound traffic. No data breach or unauthorized access has occurred — the behavior is strictly related to a misuse of the email-sending functionality by one environment. We expect normalization shortly and will post updates as the situation evolves.
Posted Oct 14, 2025 - 13:55 GMT-03:00
This incident affected: Login/SSO and HEFLO BPM (BPMN Editor - North America, Europe, Africa, Asia, and Oceania, BPMN Editor - South America).