SophosScanD process consuming up to 95% CPU

Hi, this is Dan Schiappa, Senior Vice President and General Manager of the EndUser Security Group at Sophos.  I am so proud to see so many dedicated users of our Mac product on this forum.  I'm not so proud when we have an issue that provides you with a poor experience.  I want to personally apologize for that.  We hope to continue having all of you as dedicated Sophos customers and know that we will continue to invest in quality and innovation on the Mac platform and I believe will continue to have the most secure product in the market and will continue to get better and better because of the hardword of our team, coupled with the voice of our great customers.  Thank you for your frank feedback, for holding us accountable to providing you with a product that meets your expectations (and I hope exceeds them) and for being loyal and great customers!

Now how did we get here....Version 9.0.11 of our free Mac Home Edition was released in early May, and contained a version of the virus detection data (VDL) that expired on September 15, 2014. In addition, version 9.0.11 contains a flaw that causes the Web Protection download scanning daemon (SophosScanD) to repeatedly restart when the VDL data expires, leading to excessive CPU usage.

At 4 PM PDT on September 15, 2014, Sophos published an updated version (9.1.5) to all Mac Home Edition users. This version contains an updated VDL set, corrects the defect in SophosScanD that led to this problem in 9.0.11, and contains improvements to ensure that future updates to the VDL package can be delivered without requiring a product update like we had on September 15th. Since the release of version 9.1.5, users have been automatically receiving this latest update which fully corrects the problem. 

In addition to being embarrassed by this event, we have reviewed and amended our internal procedures so that this type of failure doesn’’’’t happen again.

Hi, this is Dan Schiappa, Senior Vice President and General Manager of the EndUser Security Group at Sophos.  I am so proud to see so many dedicated users of our Mac product on this forum.  I'm not so proud when we have an issue that provides you with a poor experience.  I want to personally apologize for that.  We hope to continue having all of you as dedicated Sophos customers and know that we will continue to invest in quality and innovation on the Mac platform and I believe will continue to have the most secure product in the market and will continue to get better and better because of the hardword of our team, coupled with the voice of our great customers.  Thank you for your frank feedback, for holding us accountable to providing you with a product that meets your expectations (and I hope exceeds them) and for being loyal and great customers!

Now how did we get here....Version 9.0.11 of our free Mac Home Edition was released in early May, and contained a version of the virus detection data (VDL) that expired on September 15, 2014. In addition, version 9.0.11 contains a flaw that causes the Web Protection download scanning daemon (SophosScanD) to repeatedly restart when the VDL data expires, leading to excessive CPU usage.

At 4 PM PDT on September 15, 2014, Sophos published an updated version (9.1.5) to all Mac Home Edition users. This version contains an updated VDL set, corrects the defect in SophosScanD that led to this problem in 9.0.11, and contains improvements to ensure that future updates to the VDL package can be delivered without requiring a product update like we had on September 15th. Since the release of version 9.1.5, users have been automatically receiving this latest update which fully corrects the problem. 

In addition to being embarrassed by this event, we have reviewed and amended our internal procedures so that this type of failure doesn’’’’t happen again.