Advisory: Sophos Endpoint - "Your connection isn't private" We're aware of a certificate issue and are actively working to resolve. Please see: KB-000045954 for the latest updates.

Application Control Updates Release Notice

This is a notification for the latest Application Control 6.02 data update, which has been rolled out on the 5th July 2023

Application name Type Owner
RAD Studio ProgrammingScriptTool Embarcadero Technologies, Inc.
Techsmith Capture ScreenCapTool techsmith corporation
Sysinternals Process Suspender SystemTool Microsoft Corporation
Autodesk Access SoftwareUpdater Autodesk Inc.
DWService Agent RemMan DWSNET
PingTunnel Proxy Daniel Stodle
Gener8 Update Browser Gener8 Ads Ltd.
RG Supervision SystemTool RG System
Torrent RT P2P Torrent RT
MobaXterm RemMan Mobatek
     
     
macOS    
ScreenPal ScreenCapTool ScreenPal
Techsmith Capture ScreenCapTool TechSmith Corporation
Migration Assistant SystemTool Apple Inc.

IMPORTANT 

MobaXterm for Windows is a toolbox for remote computing. It provides remote network tools like SSH, RDP, VNC etc.. MobaXterm is portable remote access/Admin package. Sophos already has AppC detections for many of similar components by other vendors like VNC, PUTTY etc..

 

We are increasingly seeing threat actors using remote access tools as part of the attack chain, to connect back out of a compromised machine. Sophos added AppC detection for MobaXterm application in this release. MobaXterm is categorized as Remote management tool and is published in this release. Customers who want to continue to use this application in their environment, please modify your application control policy to allow MobaXterm.

 

Application Control FAQ: 

For information on configuring Application Control please review these links: 

Please follow this page for more regular updates.