This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Exploit Exclusion - Specific 'Process Name'

We are having an issue with our Sophos Exploit Prevention (on-prem Intercept-X), it's blocking our ability to use vendor provided remote support tools such as Bomgar and Logmein-Rescue.   The issue is that each time you download the EXE to launch the support window, it's a uniquely generated file with a different thumbprint and exe name each time, so putting in the exclusions list for thumbprints doesn't work.    I was hoping to exclude the 'Process Name', as that stays the same each time, but there is no option to do that.  Any thoughts?   Right now the only option I have for my techs is to turn off the Hitmanpro service each time they need to launch a support session using one of those tools.

 

Thanks!



This thread was automatically locked due to age.
Parents Reply Children
No Data