Dear TradeLocker Community,
We would like to address and clarify the two separate incidents that occurred on our platform on Wednesday, April 17th.
Incident 1: High Load on Public API
At approximately 15:12 CET, our platform experienced an unusually high load on our public API due to external automated systems (bots) making an excessive number of requests. This surge, combined with regular user traffic, overwhelmed our API resources, leading to a service disruption from 15:12 to 16:24 CET. Although we employ request rate limiting, the scale of the activity was distributed across a large number of distinct accounts, complicating our ability to immediately neutralize the impact.
In response, we temporarily disabled the public API to stabilize the platform. We are actively enhancing our rate-limiting mechanisms and refining our monitoring systems to better detect and manage such spikes in activity. Our aim is to safely restore full functionality to the public API as swiftly as possible while ensuring a robust defense against similar incidents.
Incident 2: DDoS Attack
Later the same day, at 20:17 CET, our platform was targeted by a sophisticated Distributed Denial of Service (DDoS) attack. This attack impacted accessibility for some users across both our demo and live environments. Engine and all pending orders were operational the whole time so all pending orders (SL&TP) were being executed. Our immediate response included implementing enhanced bot detection capabilities during the app loading process, which quickly mitigated the attack.
We are in ongoing discussions with our cloud services provider, CloudFlare, to further strengthen our infrastructure against DDoS and other cyber threats. Our goal is to fortify our defenses and ensure the security and reliability of our services for all users.
Commitment to Service Excellence
We sincerely apologize for any inconvenience these disruptions may have caused. We are committed to continually improving our technological capabilities and operational resilience. Protecting your access to TradeLocker and maintaining your trust are our top priorities.
Thank you for your understanding and support as we enhance our systems.