Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 9 replies
  • Subscribers 0 subscribers
  • Views 29382 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Puremessage for Exchange - lots of viruses being missed lately

Arq

Hi

We have Puremessage 3.1.3 for Exchange 2010 and we have noticed in the last few weeks that quite a lot of messages with obviously infected attachments are being missed by puremessage.  Either they are arriving in mailboxes or just being quarantined as suspicious.  Has anyone elase noticed this?  I am wondering if we have something wrong with our puremesssage or it's just that Sophos can't keep up with the definitions.  I have contacted support but as yet have not got a satisfactory response from them.  I'm interested to hear if others have noticed the same.

Thanks.

:54211


This thread was automatically locked due to age.
Parents
  • 0

    I read the article on snowshow spam.  I see that it's a problem but every problem has a solution.  As I mentioned earlier in this thread, it's extremely easy to see that a batch of mails coming in is malicious.  Puremessage needs to think like we do and recognise the similarities between incoming e-mails, and realise that the dozens of virtually identical e-mails coming in are malicious.    We're getting hundreds a day being let through by Puremessage.  I've had to block all DOC attachments.  I may have to do the same to Excel files to stop the influx, because some end users are not so vigilant as others.  Blocking them obviously causes extra workload releasing the legitimate ones so it's not ideal. 

    Sophos, get your act together, what is being done to tackle the 'snowshoe' viruses?

    :55278
Reply
  • 0

    I read the article on snowshow spam.  I see that it's a problem but every problem has a solution.  As I mentioned earlier in this thread, it's extremely easy to see that a batch of mails coming in is malicious.  Puremessage needs to think like we do and recognise the similarities between incoming e-mails, and realise that the dozens of virtually identical e-mails coming in are malicious.    We're getting hundreds a day being let through by Puremessage.  I've had to block all DOC attachments.  I may have to do the same to Excel files to stop the influx, because some end users are not so vigilant as others.  Blocking them obviously causes extra workload releasing the legitimate ones so it's not ideal. 

    Sophos, get your act together, what is being done to tackle the 'snowshoe' viruses?

    :55278
Children
No Data
Unfiltered HTML