This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

All / most of my users are getting a pop up that Callercheck exploit was prevented in Outlook

We are using Outlook 2016 (365) and getting widespread 'CallerCheck exploit prevented in Microsoft Outlook.'

How do I determine if this is outlook or a 3rd party plugin.  We all have one plugin in particular, from Newforma.

Please advise!

Thanks,

Phil



This thread was automatically locked due to age.
Parents
  • We also are experiencing this issue. We will be opening a case with Sophos.

  • We had a reply back from Sophos last week saying "We have received an update from the development team that the issue is fixed with a minor update recently released by us". We removed all entries from the global exclusion list and sure enough the problem was fixed. We were also getting a "Lockdown" vulnerability detected for a while for the same Outlook Add-In. This is no longer being triggered either even with all the latest Windows updates applied.

    It took them 2 months but we got there in the end.

  • Thank you for the response! Are you able to share your update/version you are at so I can compare with where we sit?

  • It was Sophos Intercept X (aka HitmanPro) that was causing the problem and seems to have been fixed.

     

    Product version numbers are:-

    Sophos Intercept X 2.0.2

    Core Agent 2.0.2

    Endpoint Advanced 10.8.1.1

     

    Component version numbers are:-

    Sophos Anti-Virus 10.8.1.217

    Sophos AutoUpdate 5.11.155

    Sophos Clean 3.8.3.1

    Sophos Diagnostic Utility 1.20.0.4

    Sophos Endpoint Agent 2.0.2

    Sophos Endpoint Defense 1.3.0.512

    Sophos Endpoint UI 1.4.147

    Sophos File Scanner 1.1.98

    Sophos Health 2.0.6.223

    Sophos HitmanPro Alert 3.7.4.732

    Sophos Management Communications System 4.7.15

    Sophos Network Threat Protection 1.4.540

Reply
  • It was Sophos Intercept X (aka HitmanPro) that was causing the problem and seems to have been fixed.

     

    Product version numbers are:-

    Sophos Intercept X 2.0.2

    Core Agent 2.0.2

    Endpoint Advanced 10.8.1.1

     

    Component version numbers are:-

    Sophos Anti-Virus 10.8.1.217

    Sophos AutoUpdate 5.11.155

    Sophos Clean 3.8.3.1

    Sophos Diagnostic Utility 1.20.0.4

    Sophos Endpoint Agent 2.0.2

    Sophos Endpoint Defense 1.3.0.512

    Sophos Endpoint UI 1.4.147

    Sophos File Scanner 1.1.98

    Sophos Health 2.0.6.223

    Sophos HitmanPro Alert 3.7.4.732

    Sophos Management Communications System 4.7.15

    Sophos Network Threat Protection 1.4.540

Children