Version 2025.1.0
New features
- Display prerequisites in Central
Updated components
- Threat detection engine version 3.91.0
Resolved issues
- Improved CryptoGuard false pos mitigation
- Resolved an issue where network extension reports bad health
- Resolved an issue with scheduled scan not triggering as expected
- Stability enhancements
Version 2024.4.0
New features
No new features.
Updated components
No updated components.
Threat detection engine version remains unchanged: 3.90.0.
Resolved issues
- Full Disk Access for Sophos Updater is now considered a prerequisite to resolve certain updating issues
- Full Disk Access drag and drop now includes Sophos Updater
- User is alerted via the menubar icon if there are missing prerequisites
- Stability enhancements
Version 2024.3.1
New features
No new features.
Updated components
No updated components.
Resolved issues
- Resolved an issue where SophosUpdater may crash when evaluating multiple update caches.
Version 2024.3.0
New features
Updated components
No updated components.
Resolved issues
- Improved Sophos Updater stability.
- Resolved an issue with Time Machine volume detection.
- Stability enhancements.
Version 2024.2.0
New features
- Support for Scheduled Updates
Updated components
- Threat detection engine version 3.90.0
Resolved issues
- Resolved an issue where opening Microsoft Office files on macOS 14 Sonoma may be slow.
- Improved CryptoGuard exclusions on macOS 14 Sonoma.
- Resolved an issue where the Self Help tool would occasionally report the incorrect status of Sophos Scan.
- Resolved an issue where ZTNA only installations might fail updating.
Version 2024.1.0
New features
- Support for Endpoint Software Management
- Display encryption details in Sophos Central
- Support for Device Migration
- Tamper Protection now protects Sophos files and folders
Updated components
- Threat detection engine version 3.89.0
Resolved issues
- Resolved an issue where installations may fail on macOS.
- Resolved an issue where downloading updates may fail on macOS 14 Sonoma.
- Resolved an issue where updates may occasionally fail due to a missing or expired communications token.
- Improved compatibility with third party software AutoPkg.
- Improved error handling on Central Device Encryption when taking ownership of a previously encrypted volume.
Version 10.5.1
New features
No new features.
Updated components
No updated components.
Resolved issues
- Resolved an issue where System Activity events may not be visible to all users
when multiple users exist on a Mac.
- Resolved an issue preventing certain computer details from being updated on
Sophos Central.
- Resolved an issue that may prevent user based policies being applied when
multiple users exist on a Mac.
- Resolve ZTNA Network Extension occasional crash issue on macOS Sonoma.
Version 10.5.0
New features
macOS 14 Sonoma support.
Updated components
No updated components.
Resolved issues
- Resolved an issue where multiple users on a Mac may be unable to see certain
system events in the Endpoint UI.
- Improved reliability of communication with Sophos Central.
- Improved support for removable storage devices.
- Performance and stability improvements.
Version 10.4.20
New features
Allow installation on Sonoma Beta.
Updated components
No updated components.
Resolved issues
- Resolved an issue where Sophos Event Monitor stopped and restarted multiple times
on some Mac endpoints.
Version 10.4.18
New features
Allow non-admins to enable Captive Portal Mode on the Endpoint.
Updated components
No updated components.
Resolved issues
No resolved issues.
Version 10.4.15
New features
No new features
Updated components
- Threat detection engine: 3.88.0
- Data engine: 6.01
Resolved issues
- Resolved an issue where timeout values for SXL4 request are not enforced
- Resolved an issue where macOS secure token is incorrectly assigned during remote
deployment
- Resolved an issue where websites may sometimes be incorrectly categorized for web
control
- Resolved an issue where scheduled scans may fail to complete
- Improved compatibility with Charles Proxy
- Performance & security enhancements
Version 10.4.13
New features
Introduced support for a new updating mechanism that should result in reduced
bandwidth consumption for downloads
Updated components
Threat detection engine: 3.87.0
Data engine: 5.98
Resolved issues
None
Version 10.4.7
New features
Added support for ransomware exclusions.
Added support for device isolation.
Performance and security enhancements.
Updated components
Threat detection engine: 3.87.0
Data engine: 5.98
Resolved issues
- Resolved an issue where devices could stop when accessing some file-sharing
applications.
Version 10.4.1
New features
Added support for macOS Ventura.
Updated components
The threat detection engine is 3.86.1.
Resolved issues
- Resolved an issue with opening Sophos Endpoint on some Macs running macOS
Ventura.
Version 10.4.0
Updated components
The threat detection engine is version 3.85.1.
Resolved issues
- Enhanced support for Internet connectivity via captive portal.
- Improved handling of files on remote volumes.
- Performance and stability improvements.
Version 10.3.10
New features
No new features.
Updated components
No updated components.
Resolved issues
- Resolved an issue where SDU may be generated with empty or corrupted files.
- Resolved an issue where Live Discover may fail to retrieve pending macOS updates.
- Resolved an issue where Live Discover may fail to connect on restart.
- Performance and stability improvements.
Version 10.3.7
New features
No new features.
Updated components
OSQuery is updated to version 5.2.3.
The threat detection engine is version 3.85.1.
Resolved issues
- Resolved issues with Kubernetes.
- OpenSSL has been updated to 1.1.1n to address the vulnerability CVE-2022-0778.
- Performance and stability improvements.
Version 10.3.4
New features
No new features.
Updated components
OSQuery is updated to version 5.2.2.
The threat detection engine is version 3.84.0.
Resolved issues
- Resolved issues with Security Heartbeat over Layer Two Tunneling Protocol virtual
private networks.
- Improved compatibility with Google Drive network storage.
- Improved compatibility with Egnyte network storage.
- Improved start time performance with Jamf.
- Performance and stability improvements.
Version 10.3.3
New features
No new features.
Updated components
The threat detection engine is version 3.84.0.
Resolved issues
- Sophos Scan Extension performance improvements.
- Performance improvements to CryptoGuard file backups.
- Complete removal of System Extensions during software removal.
- Apple unified logging for most components.
- Additional support for iStorage secure removable devices.
- Stability improvements.
Version 10.3.1
New features
No new features.
Updated components
The threat detection engine is version 3.83.1.
Resolved issues
- Scan Extension stability improvements.
- CryptoGuard stability improvements.
- Network Extension stability and performance improvements.
- Resolved high CPU usage during macOS updates.
- Stability and performance improvements.
Version 10.2.2
New features
Sophos Data Lake: support for runtime Indicator of Compromise (IoC) detection and
threat hunting.
Support for macOS 12 Monterey.
Updated components
The threat detection engine is updated to version 3.83.1.
Resolved issues
- Stability and performance improvements.
Version 10.1.4
New features
Native support for Apple M1 chips (excluding Central Device Encryption and Sophos
Managed Threat Response).
- Rosetta 2 is still required for Central Device Encryption and Sophos Managed
Threat Response.
Updated components
The threat detection engine is updated to version 3.82.2.
Resolved issues
- Improved support for Rosetta 2 updates.
- Improved support for local proxies.
- Improved network protection and file scanning performance.
Version 10.1.3
New features
Native support for Apple M1 chips.
Updated components
The threat detection engine is updated to version 3.82.1.
Resolved issues
- Improved support for Rosetta 2 updates.
- Improved support for local proxies.
- Improved network protection and file scanning performance.
Version 10.0.4
New features
Support for macOS 11 Big Sur.
Updated components
The threat detection engine version is 3.80.1.
Resolved issues
Security improvements.
Version 10.0.1
Important
You must review the information in knowledge base article KB-000039014 as it contains important information about this
release.
Notes
The notification "Full disk access required" that asks the user to grant Sophos
processes full disk access may be re-triggered.
The threat detection engine version is 3.79.0.
Resolved issues
Resolved issues for this release.
| Issue ID |
Description |
| MACEP-5389 |
Resolved an issue with tabs opening slowly in Google Chrome. |
Version 10.0.0
New Features
This release supports the EDR 3 capabilities in Sophos Central (to be rolled out
for Macs by September). Live Discover allows admins to use osquery to search the device data
across their estate to answer almost any question they
can think of. Live Response allows admins to start an interactive session to a remote device.
This version supports macOS 10.13 and later.
Updated Components
The threat detection engine version is 3.79.0.
Resolved issues
Resolved issues for this release.
| Issue ID |
Description |
| MACEP-4232 |
Improved battery life when performing on-demand scans. |
| MACEP-5178 |
Resolved an issue when connecting devices lacking vendor, product or serial
information. |
Support
You can find technical support for Sophos products in any of these ways:
Legal notices
Copyright © 2023 Sophos Limited. All rights reserved. No part of this publication
may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means,
electronic, mechanical, photocopying, recording or otherwise unless you are either a valid
licensee where the documentation can be reproduced in accordance with the license terms or you
otherwise have the prior permission in writing of the copyright owner.
Sophos and Sophos Anti-Virus are registered trademarks of Sophos Limited and Sophos
Group. All other product and company names mentioned are trademarks or registered trademarks of
their respective owners.