Title: Some users encountered delays of up to 12 hours for some alerts and observations in Microsoft Defender for Cloud Apps
User impact: Users encountered delays of up to 12 hours for some alerts and observations in Microsoft Defender for Cloud Apps.
More info: Impact was specific to all activities generated by the Microsoft Defender for Cloud Apps service for Anomaly Threat Detection alerts.
Final status: We’ve completed processing the backlogged data and can confirm that impact has been remediated.
Scope of impact: Impact was specific to some users who were served through the affected infrastructure.
Start time: Thursday, October 26, 2023, at 6:00 AM UTC
End time: Friday, October 27, 2023, at 1:00 AM UTC
Root cause: A section of infrastructure, responsible for regulating alerts in Anomaly Threat Detection for the Microsoft Defender for Cloud Apps service was performing below acceptable performance thresholds, due to maintenance on the impacted infrastructure.
Next steps:
– We’re reviewing our maintenance procedures to help prevent this problem from reoccurring.
This is the final update for the event.
