Sophos Phishing Protection

Posted on  by admin

Mediocre Phishing Protection Yes, Sophos watches network traffic to cut off access to malware-hosting websites, but those aren't the only sites you need to avoid. Phishing sites don't contain. Sophos also has excellent web protection, including anti-phishing protection and banking protection. During my tests, Sophos blocked all of the malicious sites I tried opening, and the banking protection made sure my financial information stayed safe. Plus new Phishing-as-a-Service malware kits make it easier than every for cybercriminals to run phishing campaigns. Meet all your anti-phishing needs with one vendor: education, pre-delivery, post-delivery. Only vendor that lets you manage all your anti-phishing protection through a single console.

You can turn tamper protection on and off for all your servers and users' computers.

To do this, in Settings, open the Tamper Protection page.

When tamper protection is enabled, a local administrator cannot make any of the following changes on their computer. They need the necessary password:

  • Change settings for on-access scanning, suspicious behavior detection (HIPS), web protection, or Sophos Live Protection.
  • Disable tamper protection.
  • Uninstall the Sophos agent software.

Manage tamper protection for a specific device

Sophos Utm Phishing Protection

You can change the tamper protection settings for a specific device or server.

Open the device's details page and look under Tamper Protection. There you can do as follows:

  • View the password.
  • Generate a new password.
  • Temporarily disable tamper protection for that device.

Recover tamper protection passwords

You can recover the tamper protection passwords of devices that you’ve recently deleted.


You might need to do this so that you can uninstall Sophos software that is still on those devices.

Sophos spam protection

Protect your Microsoft Office 365 users from malicious emails.

Sophos Phishing Protection
Restriction You can only use this feature if you've joined the Early Access Program.

With O365 Security you can set up Post delivery protection. This includes Auto search and destroy, which searches your users' Microsoft Office 365 mailboxes to identify and quarantine malicious emails.

You must add your Microsoft Office 365 tenant domains to Sophos Central in Email Gateway Dashboard > Addresses and domains before you can use Post delivery protection.

Restriction You must be a Super Admin to set up and manage connections to your Microsoft Office 365 tenants.

Set up O365 Security

When you set up O365 Security you must give permission for Sophos applications to access your Microsoft services. This allows us to scan users' inboxes for malicious emails.

You can find out how to set up O365 Security and turn on Auto search and destroy in Setup Post delivery protection.

Manage Microsoft Office 365 connections

You can see the status of connections to your Microsoft Office 365 tenants in Overview > Global settings > Domain Settings / Status.

For more information see Domains Settings/Status.

Sophos Malware Protection

Manage quarantined messages

Auto search and destroy automatically looks for malicious emails from your users' inboxes, and quarantines them. You can find quarantined emails from Office 365 users in Email Gateway Dashboard > Quarantined Messages > Post delivery quarantine.

Sophos Phishing Protection

For more information see Quarantined Messages.

Sophos Spam Protection


O365 Security reports are available in Overview > Logs & Reports > Post delivery summary.

For more information see Post delivery summary report.