Some admins may experience delays of up to 4.5 hours in the Microsoft Defender for Cloud Apps service

Title: Some admins may experience delays of up to 4.5 hours in the Microsoft Defender for Cloud Apps service
User impact: Some admins may have experienced delays of up to 4.5 hours in the Microsoft Defender for Cloud Apps service.
More info: Admins may have seen delays in the following scenarios:
– Anomaly detection triggering alerts
– Activity policy triggering alerts
– Activities available for hunting
– Activities showing in the user interface (UI)
Final status: The mitigation actions of rerouting traffic to alternate infrastructure took some time to take effect. Our extended monitoring validated that the delays in the Microsoft Defender for Cloud Apps service improved and remediated the impact.
Scope of impact: Some admins hosted on the affected infrastructure using the Microsoft Defender for Cloud Apps service may have been impacted.
Start time: Tuesday, February 6, 2024, at 11:00 AM UTC
End time: Wednesday, February 7, 2024, at 2:00 AM UTC
Root cause: A portion of infrastructure responsible for processing activities and alerts in the Microsoft Defender for Cloud Apps was performing below the expected threshold.
Next steps:
– We’re continuing our analysis of the affected infrastructure to gain better insight into what triggered the delays which will help us avoid similar situations in the future.
This is the final update for the event.