Advisory: Support Portal Maintenance. Login is currently unavailable, more info available here.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Automatic Scan of removable media

Hi,

Is there a way of automatically scanning removable media when attached to a PC? We had an outbreak of conficker a few months back (don't want to go through that again!) and are still getting the odd memory stick attached by teachers that has conficker on. I'd be a lot happier if all memory sticks/USB hard drives were fully scanned each time they were attached!

I am also trying to educate staff to ensure their home PCs are fully protected!

edit - useful info.. We're running Enterprise console 4 and Endpoint security 9

Thanks,

Joe

:691


This thread was automatically locked due to age.
Parents
  • Hello Sandy

    Is a good news that some point was sent to Dev Team :)

    About your question;

    I say. Is unusable for common users (non-IT users = 99% users in a business). Because the steps, only can executed for IT users (with permissions, or medium technical know), maybe, for a small business don't is trouble but in mediums and big business this steps are complicated.

    In business with multiple locations (remote offices, faculties) is very, very complicated.

    Remember that the IT team can't visit all pc's to copy and send the samples to SophosLabs.

    Sophos Endpoint catch multiple new malware with HIPS technology and need one option to permit sent the suspicious files from the same PC (with a click) or for example from a Central Quarantine (managed by a IT Admin).

    If you see the suspicious files in the EC this can't deleted (the message is: Impossible clean this malware").

    The question is:

    How to manage this cases?

    - Visiting the PC.

    - Accessing remotely.

    - Clean manually.

    If you see all this options can executed only for IT staff and this is a trouble.

    The EC should be have most manage options to treat the malware (viruses, suspicious, behaviour,etc) detected by Sophos in endpoints.

    This is the idea!!  :mantongue:

    Regards,

    Linck Tello Flores

    :917
Reply
  • Hello Sandy

    Is a good news that some point was sent to Dev Team :)

    About your question;

    I say. Is unusable for common users (non-IT users = 99% users in a business). Because the steps, only can executed for IT users (with permissions, or medium technical know), maybe, for a small business don't is trouble but in mediums and big business this steps are complicated.

    In business with multiple locations (remote offices, faculties) is very, very complicated.

    Remember that the IT team can't visit all pc's to copy and send the samples to SophosLabs.

    Sophos Endpoint catch multiple new malware with HIPS technology and need one option to permit sent the suspicious files from the same PC (with a click) or for example from a Central Quarantine (managed by a IT Admin).

    If you see the suspicious files in the EC this can't deleted (the message is: Impossible clean this malware").

    The question is:

    How to manage this cases?

    - Visiting the PC.

    - Accessing remotely.

    - Clean manually.

    If you see all this options can executed only for IT staff and this is a trouble.

    The EC should be have most manage options to treat the malware (viruses, suspicious, behaviour,etc) detected by Sophos in endpoints.

    This is the idea!!  :mantongue:

    Regards,

    Linck Tello Flores

    :917
Children
No Data