We will put this on our TODO list!
Sophos is keeping our team very busy with additional products as HitmanPro and HitmanPro.Alert are being put into everything: Sophos Intercept X...
C000041D means STATUS_FATAL_USER_CALLBACK_EXCEPTION. Do you have a dump by any chance?
As stated in our conversation: please report via PM! The CredGuard detection of HitmanPro is expected. Consider it a way to verify the mitigation...
HitmanPro.Alert 3.7 build 704 CTP1 - PRIVATE Finally we have a build with major new features! Most new features are located on the orange tile...
The change has been pushed around. It is very hard for us when something will end up in the product. We do our best to squeeze in as much as possible.
HitmanPro.Alert 3.6.4 Build 588 RC Changelog Fixed CryptoGuard issue introduced in build 587 Notes This build has Microsoft co-signed drivers!...
EncryptMessage * 1 0x00007FF9DBD35880 SspiCli.dll JMP 0x7ff9dc300688 2 0x00007FF9DC300688 (anonymous) Seems odd. Is detoured to the heap.
Can you send me the contents of the C:\Windows\CryptoGuard\reverted_xxx\ folder in a ZIP? Correct.
HitmanPro.Alert 3.6.4 Build 587 RC We are working on a major new build. We have backported a few fixes so that we can release an update to the...
We are working on an update. The fix is already made but we are working towards a release. You can blame the Sophos PMs for stuffing us with so...
You can expect a mitigation for the well-documented AppVerify code injection for all processes on your computer. Stay tuned.
A fix is currently being tested internally. Stay tuned and sorry for the inconvenience.
we are investigating the IAF triggers above. Stay tuned.
You forgot to post the thumbprint. I did whitelist a few IAF alerts a few moments ago. Why these tools steal memory pointers from other the...
You can try restarting the HitmanPro.Alert service.
Automatic update to build 586 is rolling.
HitmanPro 3.7.17 Build 283 BETA Changelog IMPROVED: Activation mechanism IMPROVED: Cookie detection IMPROVED: Detection of Potentially Unwanted...
I think you are right. I will supply you with a newer build with no dependency on SSE2.
Yes there is. You have to do it via Global Settings and the go to Excludes or something named like that. I am unfamiliar with the Central interface.
We are auto updating either end of today or tomorrow. We are working on a new major version of CryptoGuard which should solve the LibreOffice issue.
We have whitelisted this one. Is it still occurring?
The component steals a pointer from another component. We will whitelist this particular component.
We will whitelist this shortly (per cloud).
Browser is crashing. In some cases this triggers an exploit mitigation as well.
Separate names with a comma.
