a month ago
Hi Railway Team,
I’m posting here as we haven’t received a resolution yet via email and the issue is now business-critical.
Our team account (navedk0201’s Projects) was restricted in relation to the domain whatsapp24x7.com.
Context
The domain is a private internal enterprise tool owned by IM24x7 Delta Solutions.
It is not public-facing and does not allow open signups.
Access is restricted to pre-approved internal users only.
The issue appears to have been triggered due to temporary public visibility of authentication routes, which may have resembled phishing patterns.
To clarify:
There was no phishing activity, no credential harvesting, and no malicious intent.
Corrective Actions Taken
Public access restricted / application taken offline where required.
All authentication routes removed from public visibility.
Admin login is internal-only.
robots.txt+noindex, nofollowimplemented.Disclaimer added on landing page.
Future internal tools will be deployed only with strict private access controls (VPN / IP allowlist / Zero Trust).
Google Search Console warning has already been removed.
We fully respect Railway’s ToS and take responsibility for the misconfiguration.
However, we kindly request:
Manual review
Reconsideration of the team-level restriction
Restoration of services as soon as possible
We have active campaigns impacted due to this restriction.
Happy to provide any additional clarification required.
Thank you 
0 Replies