Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Useful forensic details

    In order to handle incidents properly it would be much easier if SEC would provide some more relevant information about detected files.
    Essential information missing:
    - File size
    - File meta data: Application Name
    - File meta data: Company Name
    Additional nice to have information:
    - True file type detection
    - Original file timestamps (Created/Modified/Accessed)
    - Information about whether the file is signed

    2 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  Incident response  ·  Flag idea as inappropriate…  ·  Admin →
    • Ability to create a standalone installer

      Under Enterprise Console, you had the ability to create a standalone install package with all IDE files, etc. This was really handy on slower internet connections, as you don't have to tie up all available bandwidth.

      Would really like this function again, as I am fighting through installing at another site with only a 5MB connection (fibre broken during renos)

      10 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        1 comment  ·  Incident response  ·  Flag idea as inappropriate…  ·  Admin →
      • Fix False Positives

        Sophos has been aware of a simple False Positive since 18th January, 2017 where a simple Word Doc in a ZIP File (Created by a Medical Program) is flagged as Mal-DrodZp-A. It was logged as #6892784. I kept going back and forth with Sophos for 8 Months until Sophos demanded a Password for the ZIP File, which we could not comply with since it contained private Customer Data. Despite the many, many workarounds Sophos had me do, Sophos Endpoint STILL grabs the file every time a VSS copy is made, despite VSS being turned OFF. This produces thousands of errors…

        2 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  Incident response  ·  Flag idea as inappropriate…  ·  Admin →
        • Basic Forensics - File Modified Date/Time

          It would be infinitely more useful if threat containment/quarantine provided the modified time of the binary before it quarantined the file. For forensics and timeline correlation of events, other artifacts can be found using a time window around the malinary's modification date/time. *malinary - a malicious binary

          4 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  Incident response  ·  Flag idea as inappropriate…  ·  Admin →
          • Sophos Cloud - Allow to disable popup alert detections on the endpoint

            On the Sophos Cloud Dashboard, allow to disable the popup alert detections so that the detection information is displayed only on the Dashboard console.
            This same feature is already available on the SEC (On-Premise endpoint console) but not on the Cloud dashboard.

            18 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              Started  ·  2 comments  ·  Incident response  ·  Flag idea as inappropriate…  ·  Admin →
            • Web Protection Email Alerts

              Please add the ability of the SAV endpoint
              to send email alerts when it encounters a web protection issue.

              For example when a user browses a web site
              that contains a contaminated image, an email should be sent, as with on-access
              scanning

              4 votes
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  Incident response  ·  Flag idea as inappropriate…  ·  Admin →
              • SMTP Logging

                Please add the ability of the SAV endpoint
                to log/debug the sending of email alerts and also log the response from
                the SMTP server upon sending of an email alert

                1 vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  Incident response  ·  Flag idea as inappropriate…  ·  Admin →
                • Don't see your idea?

                Feedback and Knowledge Base

                icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.