We have a 4 core VM with Linux SPL Agent 2024.2.1.2 4 regular processes run and each run intended at 100% - usually. Currently Sophos osquery.4 is consuming 1 core at 100% so the other 4 processes run at about 75% only, slowing down calculations of…

We have Java based microservice hosted on AWS ECS that accepts files from Customers, now we have need to scan files before its stored into perment storage. For that looking for an antivirus product with the capability to programmatically (via API or Java…

There has been some reporting that cybercrime collective known as FIN7 that is used to undermine EDR tools. From DarkReading: AuKill," developed by the notorious FIN7 cybercrime collective (aka Carbanak, Carbon Spider, Cobalt Group, Navigator Group…

Hello. Have read about good detection rates on your engine and thought to check with Endpoint a possible ransomware/ransomware situation. First time user, yet to install the trial version, after the email and password are accepted, and that email code…

Hi all, It's possible to test lab and can capture fo ransomware / malware attack ? Thanks you all.

Dear, I need to implement an endpoint solution that has EDR. Which Sophos endpoint solution already includes this feature?

We're trying to let Mac Endoints retrieve their 802.1x machine certificate for wired connection from AD domain controllers. Sophos EP is installed. This is always failing. We're suspecting Sophos EP is not letting the mdm extension successfully connect…

We need to pull "Threat Analysis Center" logs via API. When we look at guides on sophos there are just "alert", "event" queries to pull events. Could you help us, please?

Greetings to all. Is it possible to have two different "customers" and have ONE group of "Admin" users manage both of them. That is, one SOC-Analyst can belong to both spaces and handle "cases" for both customers?

hi all, i know you can turn off tamper protection on pc via cmd via the SEDcli.exe command C:\Program Files\Sophos\Endpoint Defense \SEDcli.exe -OverrideTPoff password is there anyway to do this on mac via terminal? thanks, rob

Hi everyone, I wanted to know if there are commands to manage the interceptx antivirus on Linux via ssh. For example: Launch a manual scan on a file or folder See scan logs See the progress of a scan See the status of sophos services Temporarily disable…

We can move Sophos folders which is in applications folder in macOS even we enable tamper protection, is there anyway to protect Sophos folder in application to prevent from deleting

hi, i have installed CIXA for server on one of server. on that server in threat analysis it is showing that threat is detecred I need to export report of Threat Analysis Center : threat Graph , please advise. please advise.

Is there something we could set that if a computer is Inactive it auto gets deleted? Or is there a faster way to delete inactive computers then to click on it and hit delete?

It's quite hard to find commercial malware protection options for Linux. So shortlisting the limited options out there, I found "Sophos Protection for Linux" under your Sophos Central offering, which is a replacement for your Sophos Anti-Virus for Linux…

Recently MDR Team noticed us that they have no data from a specific Mac Client. I did a few tests and it seems there is no data from any Mac Client. How can we prove they send data? https://partnernews.sophos.com/it-it/2021/10/products/enabling…

Hallo Community, hatte vielleicht jemand schon mal das Problem, dass Linux und YubiKey sich nicht wirklich vertragen? Wir haben einen Linux Client mit Server Protection installiert und immer, wenn der YubiKey abgezogen wird und wieder angesteckt wird…

Anyone know why when migrate from SEC to sophos center, the status always 'pending' even more than 4 hours?

Hello! I started to test DLP policy. Cloned the default policy in Sophos Central, added rules for bank details (all of them, Europe, Global, Hong Kong etc.) and the destination - Internet browser (all browsers). Checked - Block transfer. I enforced…

Hello everyone, one of our users is complaining Sophos is using a huge amount of memory which slows down a lot his Macbook. He already performed a scan, which came negative. But what can we do to solve this? For information, he's creating a lot of…

I have been using the server software for a year now and I want to extend this to desktop devices. I am told by our reseller that devices are per user licensing, but for us, many of our devices are no longer within an office network (we have a small…

Good morning community, I have about 300 protection endpoints under my Sophos Central Console and I need to migrate them to a new sub-state where my other Sophos products are. Is there any tool that facilitates this work or some way to do it? Thank…

We have Sophos Central Endpoint Protection for macOS installed on 50+ laptops and a few computers a day lose internet. We try to turn wifi on/off, and different browsers and it doesn't work. Oddly though if we launch Sophos Endpoint Self Help and disable…

Hi, I'm trying to reach the Sophos support and have tried registering using the right ID. Which got approved after a few minutes. But somehow i'm still being shown the registration page. I noticed in the URL redirection it says "Unable to create user…

Hello together, we have a requirement in the company that our employees clients have to reboot regularly for updates, etc. Is there a way to be actively notified by Sophos (Endpoint) if, for example, a client has not been rebooted for more than…