Title: Some admins may have been unable to review the results of Exchange Online Protection detections
User impact: Admins may have been unable to review the results of Exchange Online Protection detections.
More info: Specifically, admins using the Get-MailTrafficATPReport cmdlet to view the results of Exchange Online Protection and Microsoft Defender for Office 365 detections may have been impacted.
Final status: We’ve reverted the configuration change and confirmed with some affected users that impact has been remediated.
Scope of impact: Impact was specific to some admins who were served through the affected infrastructure.
Start time: Monday, November 20, 2023, at 7:30 AM UTC
End time: Friday, November 24, 2023, at 3:00 PM UTC
Root cause: A recent configuration change to the Get-MailTrafficATPReport cmdlet had inadvertently caused impact.
Next steps:
– We’re analyzing our configuration procedures on the affected infrastructure to help prevent this problem from happening again.
This is the final update for the event.
