Hi Sophos Community,
I was wondering for a while why some of our customers couldn't reach the Lastpass website. Now I have discovered that its being blocked by application filtering with filter "Block high risk (Risk Level 4 and 5) apps". I am aware that I can simply allow Lastpass in the application filtering policy, but I was wondering why Lastpass is listed in this list in the first place? Are there any risks to using Lastpass that I am unaware of?
Also, now that I am diving deeper into this issue, I'm noticing that the applied filter is supposed to block Risk Level 4 and 5 but it does include Lastpass which is risk level 1 that seems odd....
Not sure if I should ask this question on a community post or a support case but I thought I would try the community first.
Hello Jurre Mijs ,Thank you for reaching out to the community, you can submit a request under the application control here - https://support.sophos.com/support/s/filesubmission?language=en_US
Thanks & Regards,_______________________________________________________________
Vivek Jagad | Technical Account Manager 3 | Cyber Security Evolved
Sophos Community | Product Documentation | Sophos Techvids | SMSIf a post solves your question please use the 'Verify Answer' button.
Lastpass will not be moving to another risk level. The recent security breach(es) made it to an potentially unwanted application for SophosLabs.
Is that why it has been listed on this application filter (level 4 and 5) even though Lastpass is listed as Risk level 1?
Just checked this on my v19.5GA machine. Lastpass is not part of the filter.
Ah I see I just checked my own machine running v19 MR1 build 365 and its not there either. Still not sure why they decided to include Lastpass in a filter for risk lever 4 and 5 maybe it's what Lucar Toni mentioned about security breach(es). Well, I'm going to close this post.