Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 17 replies
  • Subscribers 1 subscriber
  • Views 15243 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Fake AV Malware Not Stopped

Stony

Why doesn't Sophos stop Malware, especially Fake AV malware, like it does viruses? We have a corporate license and all machines are up-to-date with Sophos AV but more & more we spend too much time removing malware & tracking down other changes that were made by the malware that have disabled programs.

:3565


This thread was automatically locked due to age.
Parents
  • 0

    That solution, to touch every computer, is nuts when you're trying to secure 20,000 computers, as we are. I won't say we're one of the largest users of this product, but I firmly believe we are one of the larger enterprise users of your product. I've been completely overrun with FakeAV virus alerts that are never cleaned up from the console.

    More often than not they lead to me getting a field engineer to take time out of their day to reimage a computer because Sophos refuses to clean it up. The other solution, as mentioned earlier, is to use a copy of Malware Bytes to remove it. There's got to be a better long-term solution. It's great Sophos catches it, but the fact that I can't remove it is insane. I can't clean it up from the console or from the endpoint. It always fails for us. 

    :20341
Reply
  • 0

    That solution, to touch every computer, is nuts when you're trying to secure 20,000 computers, as we are. I won't say we're one of the largest users of this product, but I firmly believe we are one of the larger enterprise users of your product. I've been completely overrun with FakeAV virus alerts that are never cleaned up from the console.

    More often than not they lead to me getting a field engineer to take time out of their day to reimage a computer because Sophos refuses to clean it up. The other solution, as mentioned earlier, is to use a copy of Malware Bytes to remove it. There's got to be a better long-term solution. It's great Sophos catches it, but the fact that I can't remove it is insane. I can't clean it up from the console or from the endpoint. It always fails for us. 

    :20341
Children
No Data