WithSecure incident

Microsoft Teams- and calendar invitation links detected as malicious

Minor Resolved View vendor source →

WithSecure experienced a minor incident on December 2, 2025 affecting Backend and Endpoint Protection and 1 more component, lasting 1h 28m. The incident has been resolved; the full update timeline is below.

Started
Dec 02, 2025, 08:12 AM UTC
Resolved
Dec 02, 2025, 09:41 AM UTC
Duration
1h 28m
Detected by Pingoru
Dec 02, 2025, 08:12 AM UTC

Affected components

BackendEndpoint ProtectionCollaboration Protection

Update timeline

  1. investigating Dec 02, 2025, 08:12 AM UTC

    We are investigating reports of Microsoft Teams- and calendar invitation links being falsely detected as malicious.

  2. resolved Dec 02, 2025, 09:41 AM UTC

    The issue has been resolved. Detections may still occur until the cache has expired. Instructions to clear the cache in WithSecure Elements Endpoint Protection can be found here: https://community.withsecure.com/en/kb/articles/29354-how-to-troubleshoot-security-cloud