I put DLP rules in place close on to a year ago with the ES1100 appliance, but it was brought to my attention recently that on excel spreadsheets my DLP rules arent triggerring. My ruleset might not work correctly with excel sheets, or there might be something else at play here.
What my custom ruleset does is look for the word "account" or any variation of that, and then it looks for up to 15 characters after for specific number strings. The spreadsheet in question had the word account as a column heading, 3 columns to the right and several account numbers below it that in an ordinary situation would have been flagged, but were not for the spreadsheet. How do Sophos DLP rules process excel spreadsheets? Does it read left to right on each row, then process each line with data the same way? Or does it look at column headers and read the data below? Any help would be appreciated.
This thread was automatically locked due to age.