Sophos Multiple Issues of Concern

Hello bernieesso. Thank you for posting your questions here.\

First of all, I'm not sure I understand your first question. What would you like to have, an overview on your computer of malware names and dates? Or a reference on a Sophos website to the name and discovery date by Sophos of that malware?

As for your second question, of course if a certain malware would only work on pc, while you are using Mac, then there's no immediate danger to your machine. But, Sophos doesn't know if you aren't also sharing these files with other machines on your network, and these machines might be pc's. So if you wouldn't care for pc malware on Mac, or Mac malware on pc, these machines would contaminate each other over and over. Other than that, it might also be a sign you received files from a source you shouldn't trust anymore, whether that's a website, a USB stick from a friend, or whatever the source.

Hope this helps?

Dear Viv,

Your comments were helpful, but in regard to the first issue you wrote:

First of all, I'm not sure I understand your first question. What would you like to have, an overview on your computer of malware names and dates? Or a reference on a Sophos website to the name and discovery date by Sophos of that malware.

What I am saying is that when a user sets a preference to delete any threat found, that threat (the specifics of that threat such as the name of the malware or virus) should not mandate a hunting expediton for the user.  Yes, I know that I can go to Preferences  → View Logs and then I can spend an hour trying to find the name of the virus or malware that flashed on my computer's display for 30 microseconds.  Not to be able to see a log of malware or viruses found by Sophos and the date is either lacking or it is so buried in the huge log files as NOT to be easily discerned.  

Lastly, I still need some solid ideas on what to do to protect my  iPad when traveling.  Is there any decent software that does what Sophos does on laptops and desktops.  Are there hardware devices or subscriptions to secure WiFi networks to avoid the pitfalls of being hacked at international airports?  

Dear bernieesso,

Apologies for the delay in answering this.

Am I correct in assuming you are using the free version for Mac? In that case, I understand your point (obviously, the managed version would give you easier access to the information you're looking for).

I couldn't really test to see what the logfile would say, except by downloading the EICAR virus. And in that case, I found that looking for the word "Threat:" would give me all lines where the virus appeared.

You could do this either from the log window, or from a Terminal window using the grep command:

      grep "Threat:" "/Library/Logs/Sophos Anti-Virus.log"

Let me know if that works out for you.

Regarding the iPad, Sophos has only one solution, which is Sophos Mobile Control. But it merely enforces security on mobile devices such as the iPad, and there's nothing you can't do yourself. So no local firewall or anti-malware.

After a cyber fiasco involving a vindictive Black Hat cracker, we wiped the IOS and MacBookPro.  Using Sophos, I routinely checked that the 4am scan had come out unscathed.  Only weeks later, ICloud was hacked, along with Apple ID and my Google Web History.  In addition, the IOS which was formerly jailbroken but factory refurbed was accessed, too.

The IOS was allegedly covered by another company.  What happened, Sophos?  No indication of intrusion, as the file log ckicked away and she used my Cloud like a big pillow....