Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Emails detailing the outcome of a Fount threat

    The on prem server console should report back via email and state whether the threat found was sucesfully cleaned, quarentined or deleted.
    At present it just indicates that something was found. But no second email with the outcome.

    As a system admin i dont want to be always logging in from home at night or on weekends to over look the outcome if i am notified a threat was found

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Incident response  ·  Flag idea as inappropriate…  ·  Admin →
  2. Supress all notifications on RDS environments

    Users on RDS servers visiting websites marked as "Malicious" receive a server-wide pop-up from Sophos Endpoint protection.

    "Desktop Messaging for Threat Protection" has been turned off on the policy but users still receive the warning in the lower-right corner of their screen in the RDS environment.

    Because of privacy reasons and GDPR this is unwanted behavior, if one users visits a "Malicious" website *all* the users receive the warning including the visited link.

    This is marked as a "Known issue" at the following link:
    https://community.sophos.com/kb/en-us/127299

    The feature would be to be able to disable the notifications for the categories: Malicious…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Malicious Traffic Detection (MTD)  ·  Flag idea as inappropriate…  ·  Admin →
  3. [Device Control] - possibility to block usb-to-ethernet adapter

    Currently you cannot block usb-to-ethernet adapter.
    There are several usb-key attack-scenarios which use the ethernet emulation to sniff ntlm-hashes from a windows PC. Is there also a possibiliry to an option to block media devices like usb keyboards, usb mouse and/or cameras? Or an option to create your own device classes.

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  4. New report type : USB allowed/blocked

    We are using the device control feature to block USB drives in most PCs and created sub-groups to allow certain PCs to have USB Access.
    Currently there is no reporting on how many computers have USB access allowed and how many have it denied, so kindly let us know about this feature

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  5. Veeam compatibility

    Veeam has the option to check your VMs for malware when you make a restore.
    Unfortunately, there is no ready-made command from Sophos to check the VMs. I would like to see this command in the future for Sophos Endpoint security and control and other sophos products.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
  6. Detailed Reporting of Installed Agents

    Need to be able to see the protected servers with a list that shows more details. Agent Version, Component Versons. Customize Lists.

    Need to add a report to produce a detailed server list and installed component versions.
    THIS IS AN AUDITING REQUIREMENT - KPMG!

    Thanks.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  7. USB Device file lock

    Ability to block certain file types running from a USB device like .bat or .exe files.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  8. Report the active websites in Exploit Prevention

    When getting an ROP, HeapSpray, StackExch exploit detection, it would be nice to know what site(s) the user was on at the exact time of the detection. This would allow us to look at whether or not the site caused the detection. We can even access the site from our detonation chamber to test.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. show full version numbers in SEC console

    Update SEC to display the FULL version of products installed on the endpoint. Currently the full version numbers of installed products are only displayed on the endpoints making accurate identification impossible from the SEC console. (As evident in April-May of 2019) At a minimum, gather that information into the SEC dbase so it can be queried.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  10. scheduled policy updates via enterprise console

    Add scheduled policy updates via enterprise console. Given the limitations of Tamper Protection to prevent end users from making changes and the support risks of Advanced Tamper Protection, the ability to schedule policy checks to periodically force policy compliance on the endpoints would be a good future enhancement.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  11. 2019

    Add Windows Server 2019 to the list of approved operating systems for SEC 5.5.1

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Combine different USB device control exeption lists (policy) / Export-Import

    We need the option to combine the exceptions from two oder more different USB device exception lists (Policy).

    Or simply export the exception list of a policy and import (add) the list to another policy.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  13. Remote sdu

    It would be helpful to be able to start an SDU through Sophos central instead of having to connect to the computer in question and start one.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  14. Allow reactivate policies automatically.

    Allow reactivate policies automatically.

    Through policies, allow some modules to be deactivated at a specified time and for specific computers, and automatically reactivate at another specified time.

    The objective is for users who use personal computers to have their navigation and / or application control restrictions disabled at the end of the working day and reactivated at the start of the next day.

    Currently there is an option to expire the policies at a specific date and time, but not one to reactivate them.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. When will there be Sophos Endpoint Security compatibility with Windows security center

    When will there be full compatibility Sophos Endpoint Security with Windows security center?

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  16. For Sophos Web Control, could we have warning windows pops up for https websites which fall into the warn web usage category?

    For Sophos Web Control, could we have warning windows pops up for https websites which fall into the warn web usage category? Currently warning windows will pop up for http websites which fall into the warn web usage category only.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
  17. support mac os

    Sophos AV no longer supports 10.9.x, 10.10.x & 10.11.x this seems curious as Windows 7 and older versions of Windows server are still supported. I would really like to see these older version of macosx client supported but was told that Sophos AV does not provide support because Apple no longer provides security updates and therefore will not support the older versions Mac OS X. This reasoning is poor. After all these older versions were initially covered by our license, but now we lose out. Note, there have been many times in the past where applications where developed to fill…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
  18. Hash Values Validation Tool

    Hi, Wanted to check with Sophos that possibilities following requirement can be done?

    We subscribed Threat Intelligence report with service provider who is sharing the recent attacks and various vulnerabilities identified world wide on daily basis. They share report with IoC's which cause the attack like hash values, URL's, IP's, etc.

    As a Security Analyst, we will check those IoC's with various security validation tools where the security solutions we have is capable to detect it or not. Like URL which is in the IoC list will be validated by online categorization checker. If the URL was categorized as Malicious…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  19. Patch Management

    Update client software like Microsoft / Office / Adobe Acrobat / WinZip etc. etc. from Sophos Central.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Patch Assessment  ·  Flag idea as inappropriate…  ·  Admin →
  20. Option to NOT show recovery key on Mac

    Option to NOT show recovery key on Mac. I don't like how it appears so clearly - what happens if my laptop is stolen?

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.