"Wanna" ransomware outbreak. Please see this Sophos article sophos.com/kb/126733 for advice on how to protect your organization. Immediate action recommended.
Sophos Anti-Virus for Linux version 9.5.0, released in December 2014, added support for Linux 3.8, 3.9, 3.10, and 3.11 kernels. Unfortunately an issue has been found with Sophos Anti-Virus for Linux on 3.8 kernels that could cause the operating system to hang requiring a restart of the system to resolve the problem.
First seen in
Sophos Anti-Virus for Linux 9.5.0
Operating systems Linux kernel version 3.8
The issue occurs due to a conflict between the on-access component talpa, and the 3.8 Kernel but the root cause has not yet been identified. This issue was not encountered during testing and has only been reported by one customer at present.
We would recommend that any customers affected by this issue switch to using Fanotify for on-access scanning while we resolve this issue. Instructions detailing how to enable Fanotify can be found in article 118216.
To help mitigate this issue from occurring for additional customers we have removed our pre-compiled Talpa Binary Packs (TBPs) for the 3.8 kernel. This however will not prevent Talpa from attempting to automatically compile Talpa itself.
Customer who are unable to switch to Fanotify are able to disable On-Access scanning to prevent the issue from occurring. Scheduled scans should be used to mitigate the risk of running without On-Access scanning.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. If you need technical support please post a question to our community. Alternatively for licensed products open a support ticket.