Endpoint Detection and Response (ICDm) Incident Rule Issue

Resolved
Resolved

The cause of this issue has been addressed and the backlog processed. This incident is resolved.

Monitoring

A fix has been implemented and queued backlog has started processing. The remaining backlog is expected to clear within 24 hours.

We are closely monitoring the service and will provide updates as new information becomes available.

Identified

We continue to work a permanent fix. Impacted customers are unable to see Incidents being generated when events that match Incident rules are observed.

We will provide an update as soon as new information is available.

Identified

We have identified the cause of this issue and are working on a fix. We will provide an update as soon as new information is available.

Investigating

We are currently investigating an issue with Endpoint Detection and Response (ICDm). Impacted customers are unable to see Incidents being generated when events that match Incident rules are observed.

We are currently investigating this issue and will provide an update as soon as new information is available. No other aspect of the service is impacted by this issue.

Began at:

Affected components