Sophos XG Email protection URI blocklist?

Question

XG310 (SFOS 18.5.3 MR-3-Build408) incl. Email protection license

I am wondering if the Email protection includes URI blocklist detection?
Example: a phishing mail last week contained the URI
https://storageapi.fleek.co/4524b2f2-4642-4a38-9b65-c5445b0b3d26-bucket/kay7/index.html
in the text body.

The standard SpamAssassin package includes files to use URIBL
multi.surbl.org, multi.uribl.com and dbl.spamhaus.org

Can these be configured in XG Email protection as well. If so,
does Sophos automatically do the right thing if such URIBLs are added to the RBLs?

This thread was automatically locked due to age.

Vivek Jagad · Accepted Answer

Hey Kevin Ivory , URLs scanning is a feature request as of now ! You can submit a feedback from the product itself ! !

Vivek Jagad · Answer

Hello Kevin Ivory , Thank you for reaching out to the community, Sophos Email does provide address group: https://docs.sophos.com/nsg/sophos-firewall/19.0/Help/en-us/webhelp/onlinehelp/AdministratorHelp/Email/AddressGroup/EmailAddressGroupAdd/index.html Which are premium and standard RBL services , but you can also add your custom too...

Sophos XG Email protection URI blocklist?

Top Replies

Submitted a Tech Support Case lately from the Support Portal?