Conflict with Zotero (false positives)

Question

Hi there, 
 this seems to be just one of a few issues that occasionally emerge due to a conflict of Sophos and Zotero (open source reference management software). Zotero stores temporary .zip files that contain a website screenshot and article metadata and maybe the article PDF (filenames are hashes that will be folder names in the database), using them to populate a local reference database. Sophos doesn't like this and gives me utterly annoying false positives (Mal/DrodZp-A , cf. screenshot) and moves those .zip files into the quarantine folder. As there is no direct way to inform Sophos about false positives, I thought I'd drop this here...

QC · Answer

Hello boingboingbarf, 
 there is no direct way there is. While FPs aren't explicitly mentioned Submitting samples of suspicious files to Sophos applies to them as well. Furthermore the analysis for Mal/DrodZp-A suggests that you send a sample to assist in improving our technology . I daresay Mal/DropZp-A is partly a generic detection and naturally prone to FPs - that's why you are asked to send a sample. There is, BTW, no quarantine folder and those files haven't been moved. 
 Christian