Resolved -
On June 11th, between 8:30 PM and 9:20 PM, our company experienced a targeted attack on several subdomains.
During this time, key applications—including Admin Desk, POS Desk, Booking Widget, and Website Builder—were partially or fully unavailable. As a result, bookings were not being processed successfully.
After an analysis by the engineering team, patterns for the attack as well as the source was identified and the IP address successfully blocked.
Bookings originating from OTAs were subsequently reprocessed and delivered later that evening.
As improvement steps, we plan to change our proxies used for subdomains and move them to a web application firewall.
We apologize for any inconvenience this may have caused.
Jun 12, 10:06 CEST