"Wanna" ransomware outbreak. Please see this Sophos article sophos.com/kb/126733 for advice on how to protect your organization. Immediate action recommended.
Sophos Anti-Virus has reported malware in the C:\Program Files\Sophos\Puremessage\Temp\ folder. First seen in PureMessage for Microsoft Exchange
You have not excluded the PureMessage temporary folder from the local Anti-Virus on-access scanner. PureMessage uses this Temp folder to extract and scan compressed files.
Set up an exclusion for this folder so that the on-access scanner in Sophos Anti-Virus does not interfere with PureMessage.
If the local copy of Sophos Anti-Virus is managed from the console ensure that the central Anti-Virus and HIPS policy of the PureMessage server has the exclusion set rather than being configured locally. This stops the setting being lost if the policy is complied from the console.
Also ensure you have implemented exclusions for IIS and Exchange. For further information see article 35970.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. If you need technical support please post a question to our community. Alternatively for licensed products open a support ticket.