I just sent me some test mails from this web site: https://www.heise.de/security/dienste/emailcheck/virendummies/zip_g0/
The test mail contains a ZIP archive which contains a "eicar.com" virus test file. They somehow set the file size for the uncompressed "eicar.com" to 0 bytes. My Sophos AV for Linux does not seem to detect this file. They already said that some AV scanners are unable to detect these files. But I am worried and I am asking if this is something which can be fixed in Sophos or if this is something where I am doing something wrong?
All other test mails with "eicar.com" from this site are found successfully.
I am using the following version:
Sophos Anti-Virus = 9.13.2
Build Revision = 2694126
Threat detection engine = 3.68.2
Threat data = 5.41
Threat count = 13606968
Threat data release = Tue Jun 27 00:00:00 2017
Last update = Mon Jul 10 09:50:28 2017
Any hint would be appreciated. Thanks
This thread was automatically locked due to age.