3CX DLL-Sideloading attack: What you need to know

Sophos Firewall

Discussions Sophos Firewall: v18.5 MR3: Feedback and experiences

Sophos Firewall requires membership for participation - click to join

Thread Info

State Verified Answer
+1 person also asked this people also asked this
Locked Locked
Replies 61 replies
Subscribers 53 subscribers
Views 10538 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Firewall: v18.5 MR3: Feedback and experiences

LuCar Toni over 1 year ago

https://community.sophos.com/sophos-xg-firewall/b/blog/posts/sophos-firewall-v18-5-mr3-is-now-available

Release Notes: https://docs.sophos.com/releasenotes/output/en-us/nsg/sf_185_rn.html

"Old" V18.5 MR2 Thread: https://community.sophos.com/sophos-xg-firewall/b/blog/posts/sophos-firewall-v18-5-mr3-is-now-available

MR4
[gesperrt von: LuCar Toni um 1:58 PM (GMT -7) am 16 Jun 2022]

Top Replies

Florian87 11 months ago +1

I did upgrade to SFOS 18.5.3 MR-3-Build408 on three devices (XG106, XG125, XG135). All of them show the warning that the osquery service is stopped. The warning message sometimes disappears and then comes…

Parents

0 Bart van der Horst over 1 year ago

Hi,

Lots of spam coming through since update, did not change anything. Any clue?

Pills, drugs and sex al getting past the spam checks.

Quarantine is empty, for a few days now, used to have 20~25 mails a day going to quarantine.

Bart van der Horst

Sophos XG v18(.5) / v19 Certified Architect
https://www.bpaz.nl
Cancel
Vote Up 0 Vote Down

Cancel
0 Bart van der Horst over 1 year ago in reply to Bart van der Horst

Eicar test email did get blocked and quarantined, but that was bij AV engine.

Alert for SFVH (SFOS 18.5.3 MR-3-Build408)

Device Information:
Hostname: hostname
Management Interface IP: x.x.x.x
Date/Time: 2022-03-27 18:46:13
Alert ID: 10001

Message:
Email content was unscannable

Bart van der Horst

Sophos XG v18(.5) / v19 Certified Architect
https://www.bpaz.nl
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Bart van der Horst over 1 year ago in reply to Bart van der Horst

Eicar test email did get blocked and quarantined, but that was bij AV engine.

Alert for SFVH (SFOS 18.5.3 MR-3-Build408)

Device Information:
Hostname: hostname
Management Interface IP: x.x.x.x
Date/Time: 2022-03-27 18:46:13
Alert ID: 10001

Message:
Email content was unscannable

Bart van der Horst

Sophos XG v18(.5) / v19 Certified Architect
https://www.bpaz.nl
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data