News: Feature update
Having your email account compromised by attackers is seriously bad news. That’s why Sophos Synchronized Security now connects Sophos Email with Sophos Endpoint. Delivering automatic detection and clean-up of infected computers sending outbound spam and viruses.
The symptoms of a compromised mailbox
When your domain is used to spread malicious emails, it can impact your reputation as an email sender, leading to blocked messages, and your reputation as a trusted business. There are some common symptoms of this activity, but busy users may struggle to notice, leading to undetected threats:
A connected approach to compromised mailbox security
Thanks to its shared user list, Sophos Central is now able to link mailboxes protected by Sophos Email with the associated computers protected by Sophos Endpoint security. Once linked, if Sophos Email detects 5 or more spam or virus emails sent in 10 minutes, the mailbox is automatically blocked while an endpoint scan is carried out and the infection removed.
Alerts for any blocked mailbox are then instantly shared via the Sophos Central dashboard, with an event captured in endpoint logs for the blocked mailbox alert, and the associated endpoint scan - providing complete visibility into the threat and the action taken.