Hello,
We recently suffered a ransomware attack from nozelesn. It's encrypted an entire network shared drive and several machines in the building network. Question is, how was this not picked up by our sophos enterprise setup with endpoint and control?
This thread was automatically locked due to age.