Hey everyone!
I've come across a peculiar issue and wanted to see if anyone else is experiencing the same thing. Normally, I'd open a support case for this, but since we're not on GCP yet and the change to GCP is ongoing, I can't do that just yet. So, I'm crossing my fingers that someone from Google can either confirm they're working on this or, if it's a more widespread issue.
Here's what I've noticed:
- Alerts with alarming disabled are still showing up on the "Alerts & IOCs" page. We've seen this happening for both Curated Detections and Custom Rules. To catch our breath, we've gone ahead and archived the rules and disabled them completely.
- To add to the strangeness, we can't close these alerts either.
Anyone else dealing with this?
Edit: Seems like this issue was fixed! Thanks Everyone!
LinkedIn
Twitter
