This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

As a vendor, how can I tell why my file was flagged as having a low reputation for one of my customers?

Our client software has triggered a Sophos Endpoint warning as being of low reputation. Knowing that the file is not malware, how do I trace why the file was flagged in this manner, and get it corrected, so as to not worry my customers?

This thread was automatically locked due to age.

Parents

0 Shweta over 3 years ago

Hi Michael Gorman

Download Reputation is a feature checks files downloaded from some internet browsers against a database of files held in SophosLabs. Please check this article for more information about this feature and see if it helps. As suggested you can submit the file to our Sophos Labs if you require any in-depth investigation.

Shweta

Community Support Engineer | Sophos Technical Support
Are you a Sophos Partner? | Product Documentation | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'Verify Answer' link.

The New Home of Sophos Support Videos! - Visit Sophos Techvids
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Shweta over 3 years ago

Hi Michael Gorman

Download Reputation is a feature checks files downloaded from some internet browsers against a database of files held in SophosLabs. Please check this article for more information about this feature and see if it helps. As suggested you can submit the file to our Sophos Labs if you require any in-depth investigation.

Shweta

Community Support Engineer | Sophos Technical Support
Are you a Sophos Partner? | Product Documentation | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'Verify Answer' link.

The New Home of Sophos Support Videos! - Visit Sophos Techvids
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 Michael Gorman over 3 years ago in reply to Shweta

I read those articles prior to posting, not helpful in this case. I have submitted to the labs, so hopefully, I can get some answers there. That said, this file has only existed a very short time, this release was cut a few weeks ago, and there probably aren't 100 copies out there. The message also indicated where it came from, which was Github, could that be why it was flagged? Not the file, but the download location? And if that is true, is all of Github flagged? That would seem pretty extreme, though I could see how algorithms could end u p there, with as much garbage is out there.
Cancel
Vote Up 0 Vote Down

Cancel