We are using Outlook 2016 (365) and getting widespread 'CallerCheck exploit prevented in Microsoft Outlook.'
How do I determine if this is outlook or a 3rd party plugin. We all have one plugin in particular, from Newforma.
We also are experiencing this issue. We will be opening a case with Sophos.
We had a reply back from Sophos last week saying "We have received an update from the development team that the issue is fixed with a minor update recently released by us". We removed all entries from the global exclusion list and sure enough the problem was fixed. We were also getting a "Lockdown" vulnerability detected for a while for the same Outlook Add-In. This is no longer being triggered either even with all the latest Windows updates applied.
It took them 2 months but we got there in the end.
Thank you for the response! Are you able to share your update/version you are at so I can compare with where we sit?
It was Sophos Intercept X (aka HitmanPro) that was causing the problem and seems to have been fixed.
Product version numbers are:-
Sophos Intercept X 2.0.2
Core Agent 2.0.2
Endpoint Advanced 10.8.1.1
Component version numbers are:-
Sophos Anti-Virus 10.8.1.217
Sophos AutoUpdate 5.11.155
Sophos Clean 184.108.40.206
Sophos Diagnostic Utility 220.127.116.11
Sophos Endpoint Agent 2.0.2
Sophos Endpoint Defense 18.104.22.1682
Sophos Endpoint UI 1.4.147
Sophos File Scanner 1.1.98
Sophos Health 22.214.171.124
Sophos HitmanPro Alert 126.96.36.1992
Sophos Management Communications System 4.7.15
Sophos Network Threat Protection 1.4.540
Thank you! I will be verifying our particular setup with Sophos, but I also will confirm that the users' numbers match that.
I appreciate your input!