Carbon Black Cloud: Searching with watchlist alert IOC criteria returns no results
Article ID: 291594
Updated On:
Products
Carbon Black Cloud Enterprise EDR (formerly Cb Threathunter)
Issue/Introduction
- Running a search using the criteria from an IOC that received a watchlist alert returns zero results
- From the process analysis page, clicking on the IOC criteria loads an investigate search that shows zero results
Environment
- Carbon Black Cloud Console: All Versions
- Enterprise EDR
Cause
An identified bug where large delays in sending/processing events results in inconsistent Alert and IOC search results
Resolution
This issue was fixed in backend version 0.71
Feedback
Yes
No
Powered by
