We had an internal pen test done by a 3rd party and the following remote admin tool was used against us the Sophos didn't block or detect. Another tool we have running in the environment picked it up and alerted. Please advise as to what we have mis-configured or if there is a flaw in your detection.
This thread was automatically locked due to age.