Datto AV – Behavioral Detection Update

Update timeline

1. identified Apr 01, 2026, 04:53 PM UTC

   We are aware of a low-frequency issue where certain legitimate files may be unexpectedly quarantined by a behavioral detection component. What’s happening In rare cases, a behavioral detection module may briefly activate during endpoint startup before policy settings are fully applied. During this short window, files that would normally be allowed may be flagged and quarantined. Customer impact Low probability, but non-zero Quarantined files may not generate alerts in the console Files cannot currently be restored directly from the portal What we’re doing Implementing a fix to ensure this component does not activate during startup Rolling out updates in a controlled manner Actively monitoring to ensure the issue is fully resolved What you should do If you believe this has impacted your environment: Contact Support Our team can assist with restoring files from quarantine !!! Important !!! Do not remove AV licenses from affected devices, as this may result in permanent deletion of quarantined files. Next update We will share progress as rollout completes and the fix is fully deployed.

2. identified Apr 02, 2026, 03:03 PM UTC

   A fix has been developed and this will be released tonight, after 12am(EST) and applied during your next set maintenance window.

3. resolved Apr 03, 2026, 01:24 PM UTC

   A fix was deployed 4/2/26 after 11pm and will install to agents during the next set maintenance window.