Hi,
I have a license for UTM 9 for home. I was doing some testing on a VM and got "could not contact server" for updates to the AV. This kept happening over a long period of a week.
I then decided to google for a "normal" Sophos installer for EndPoint and then planned to enter in the settings for my UTM to receive updates. Unfortunately, I googled the name of a Sophos.exe which brought me to this page "http://sophos.oh-isp.com/downloads/Sophos10SW/" which I thought was from the Official Sophos site, how wrong I was.
I then downloaded one of the EXE's, installed it on a VM and it received updates, however it had update settings previously entered on it and is obviously a company's Sophos installer, that I have accidentally installed on my system.
I'm concerned about this now, I installed it on a machine that was joined to my home domain, however had no user data on it. I was logged on as Domain Admin and was only used for testing. What legalities are there to this situation, if any? I have killed the VM however I did receive a notification that when installing that I had a newer version of Sophos Update installed. I installed version 10.0 and on all my other machines I have 11.0 UTM. I don't know why these setups are unattended now, but I feel stupid that I've accidentally installed another version that has linked to some company's server (I think?)
This was a stupid decision of mine, and after some looking the installer seems to belong to a subsidiary of Capita Group. Brilliant.
Please could anyone give advice as to what to do, I only came across the page because Google had indexed it, although I don't think it should have been accessible?
Thanks all.
John
This thread was automatically locked due to age.