We are having an issue with our Sophos Exploit Prevention (on-prem Intercept-X), it's blocking our ability to use vendor provided remote support tools such as Bomgar and Logmein-Rescue. The issue is that each time you download the EXE to launch the support window, it's a uniquely generated file with a different thumbprint and exe name each time, so putting in the exclusions list for thumbprints doesn't work. I was hoping to exclude the 'Process Name', as that stays the same each time, but there is no option to do that. Any thoughts? Right now the only option I have for my techs is to turn off the Hitmanpro service each time they need to launch a support session using one of those tools.
Thanks!
This thread was automatically locked due to age.
