Windows tamper protection improvements
Improve protection of the Sophos installation from malicious actors
being released to Central endpoints in July/August and to on premise endpoints later (can be turned on manually in the first instance).
Jason Partlow commented
I think it would be useful to have an option, perhaps as part of Tamper Protection, that would block access to the Windows “PC Reset” function. As it stands now, a user can use PC Reset to restore their PC to factory state, without Sophos installed on it.
ISAIAS IZAGUIRRE commented
Include in the TAMPER PROTECTION feature the ability to restrict unauthorized users to stop/start/pause Sophos services or modify any property of them in the computers. So companies won't need to use GPOs to avoid these risks.