I'm running through my Medium alerts in Sophos central and see something like this:
PUA detected: 'Genieo' at '/Users/someone/Library/App
I click on that link to learn more about whatever Genieo is, and it brings me to a Sophos forum search of other users also asking about Genieo. As in, the exact same thing I could find if I did a google search for it.
How about this one?
PUA detected: 'ExtensionsInstaller' at '/Users/someone/Downloads/FlashPlayer.dmg'
Click on the link, and nothing found.
How about this one?
PUA detected: 'Solvusoft StaticBuild Installer' at 'C:\U
You bet, another clickable link that shows no results found. Got another one for something called a Spigot Toolbar. Sophos thinks it's a problem, but when I click on the link, the huge antivirus company can't even provide me with a single result as to why it thinks it's a problem. I could be the only person in the whole world that's ever seen a Spigot Toolbar for all the useful information that Sophos provides me about where it came from, how I can resolve it, or why it was detected as PUA.
I try several other links in my list and most of the show no results found, or simply redirect me to a search result page that only seems to search the barest of information on the Sophos forums.
My point is, why bother even including links if they're mostly useless? How come they don't redirect me to a page somewhere on Sophos which gives me a detailed explanation of the virus or malware and why it was detected and what my infection vectors are and what I could possibly do to remove it?
My old server-based Sophos Endpoint Protection would at least give me relevant information about the virus or PUA or malware when I ran through the alert history and clicked on the information links, but Sophos Central can't do it? Why?
This thread was automatically locked due to age.
