Endpoint Detection and Response Events Issue

Resolved
Resolved
After 1 week and 37 minutes

We have monitored the service for stability and this incident shall now be closed.

Monitoring
After 6 days, 12 hours, and 18 minutes

We have identified the cause of the issue and have implemented a fix. We will now monitor the service for stability and provide updates as soon as new information becomes available.

Identified
After 4 days, 5 hours, and 46 seconds

We continue to work on the remaining fix. We will provide further updates as more information becomes available.

Identified
After 1 day and 24 minutes

We can now confirm the issue with displaying the search results using ‘Capture Forensic Data’ command is partially resolved. Customers should no longer see an error displayed when viewing events retrieved by the command.

Windows process events are still unavailable to display and this issue continues to be investigated. We will provide further updates as more information becomes available.

Identified
After 16 hours and 19 minutes

We continue to work on the fix. We will provide updates as new information becomes available.

Identified
After 1 hour and 58 minutes

We have identified the cause of the issue and are working on a fix. We will provide updates as new information becomes available.

Investigating

We are currently investigating an issue with Endpoint Detection and Response. Customers will be unable to view all of the event types while using the ‘Capture Forensic Data’ command for Windows endpoints. Only Windows Network Connections and Windows User events are available.

Our engineering team is actively investigating the issue. We will provide an update as soon as new information is available. No other aspect of the service is impacted by this issue and endpoints remain protected.

Began at:

Affected components