Has anyone experienced issues with Sophos Central sporadically sending emails concerning the Medium/High alerts it finds?
Typically, whenever a Medium or High Alert is generated/found, Sophos will send an email to the administrators on my team, however, lately, it seems to be picking and choosing which emails it wants to send. There have been two instances in as many days where Ransomware and Real-Time Protection issues were found, but no email was generated for them. When logging into the console, they appear as High alerts and all the information is there, but it's already been hours (12+) since they were found. Conversely, other alerts (Medium and High) that happened during this same timeframe did send emails successfully. There aren't any exceptions or rules, etc of any kind with the affected machines/users, so it seems a little strange for Sophos to arbitrarily decide what it wants to send and when.
Sophos support didn't have any answers and continuously pointed me in directions that were entirely unrelated to the issue at hand - not necessarily surprising - so I'm turning to the Sophos community. Help me out guys and gals....
This thread was automatically locked due to age.