Service Health

This page provides status information on the services that are part of Google Cloud. Check back here to view the current status of the services listed below. If you are experiencing an issue not listed here, please contact Support. Learn more about what's posted on the dashboard in this FAQ. For additional information on these services, please visit https://cloud.google.com/.

Incident affecting Mandiant Managed Defense

Mandiant Managed Defense reported issues with ingestion of some alerts from CrowdStrike Falcon integrations.

Incident began at 2024-09-18 12:40 and ended at 2024-09-20 14:51 (all times are US/Pacific).

Previously affected location(s)

Global

Date Time Description
20 Sep 2024 14:51 PDT

Our engineering team has completed their investigation and confirmed that there was no service degradation, and no supported alerts from CrowdStrike were missed during this period.

Any discrepancy observed by our users between the Managed Defense portal and the third party security console would be due to recent changes in how detections are displayed within the CrowdStrike Falcon console.

The Managed Defense service continues to operate as intended with the CrowdStrike Falcon integration.

We appreciate your patience and understanding.

19 Sep 2024 09:24 PDT

Summary: Mandiant Managed Defense is experiencing issues with ingestion of some alerts from CrowdStrike integrations.

Description: Our engineering team has identified the underlying cause for the issue and are working on steps required for mitigation.

We do not have an ETA for mitigation at this point.

We will provide more information by Wednesday, 2024-09-25 17:00 US/Pacific.

Diagnosis: A subset of alerts from CrowdStrike integrations are not available for Managed Defense SOC analysis. Customers may not see all supported detection events from CrowdStrike in the Managed Defense Portal.

Workaround: None at this time.

18 Sep 2024 15:55 PDT

Summary: Mandiant Managed Defense is experiencing issues with ingestion of some alerts from CrowdStrike integrations.

Description: Our engineering team has identified the underlying cause for the issue and are working on steps required for mitigation.

We do not have an ETA for mitigation at this point.

We will provide more information by Thursday, 2024-09-19 10:00 US/Pacific.

Diagnosis: A subset of alerts from CrowdStrike integrations are not available for Managed Defense SOC analysis. Customers may not see all supported detection events from CrowdStrike in the Managed Defense Portal.

Workaround: None at this time.

18 Sep 2024 14:40 PDT

Summary: Mandiant Managed Defense is experiencing issues with ingestion of some alerts from CrowdStrike integrations.

Description: Our engineering team has identified the underlying cause for the issue and are working on steps required for mitigation.

We do not have an ETA for mitigation at this point.

We will provide more information by Wednesday, 2024-09-18 16:00 US/Pacific.

Diagnosis: A subset of alerts from CrowdStrike integrations are not available for Managed Defense SOC analysis. Customers may not see all supported detection events from CrowdStrike in the Managed Defense Portal.

Workaround: None at this time.

18 Sep 2024 13:38 PDT

Summary: Mandiant Managed Defense is experiencing issues with ingestion of some alerts from CrowdStrike integrations.

Description: We are experiencing an issue with Mandiant Managed Defense.

Our engineering team continues to investigate the issue.

We will provide an update by Wednesday, 2024-09-18 14:45 US/Pacific with current details.

Diagnosis: A subset of alerts from CrowdStrike integrations are not available for Managed Defense SOC analysis. Customers may not see all supported detection events from CrowdStrike in the Managed Defense Portal.

Workaround: None at this time.

18 Sep 2024 13:11 PDT

Summary: Mandiant Managed Defense is experiencing issues with ingestion of some alerts from CrowdStrike integrations.

Description: We are experiencing an issue with Mandiant Managed Defense.

Our engineering team continues to investigate the issue.

We will provide an update by Wednesday, 2024-09-18 13:45 US/Pacific with current details.

We apologize to all who are affected by the disruption. .

Diagnosis: A subset of alerts from CrowdStrike integrations are not available for Managed Defense SOC analysis. Customers may not see all supported detection events from CrowdStrike in the Managed Defense Portal.

Workaround: None at this time.