The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of SafeGuard Disk Encryption

vulnerability 21730

Sophos SafeGuard encryption: lack of encryption for removable media

Synthesis of the vulnerability

An attacker can invite a victim to plug removable media containing sensitive files into a "Surface Dock" to disable Sophos SafeGuard encryption, in order to get these sensible files.
Impacted products: SafeGuard Encryption.
Severity: 2/4.
Consequences: data reading.
Provenance: document.
Creation date: 31/01/2017.
Identifiers: 125970, VIGILANCE-VUL-21730.

Description of the vulnerability

An attacker can invite a victim to plug removable media containing sensitive files into a "Surface Dock" to disable Sophos SafeGuard encryption, in order to get these sensible files.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability bulletin 17008

Sophos Disk Encryption: read-write access via SEC and Sleep-mode

Synthesis of the vulnerability

An attacker can bypass access restrictions of Sophos Disk Encryption via the Sleep-mode of Windows, in order to read or alter data.
Impacted products: SafeGuard Encryption, SafeGuard PrivateDisk.
Severity: 2/4.
Consequences: data reading, data creation/edition, data deletion.
Provenance: user console.
Creation date: 28/05/2015.
Identifiers: VIGILANCE-VUL-17008.

Description of the vulnerability

The Sophos Disk Encryption product can be managed from Sophos Enterprise Console.

However, when Windows exits from the Sleep mode, a password is not always requested by Sophos Disk Encryption.

An attacker can therefore bypass access restrictions of Sophos Disk Encryption via the Sleep-mode of Windows, in order to read or alter data.
Full Vigil@nce bulletin... (Free trial)

vulnerability 15250

Sophos Disk Encryption: disk access after sleep mode

Synthesis of the vulnerability

An attacker can wake up a sleeping computer with no authentication, in order to read or alter disk data, even if Sophos Disk Encryption is used.
Impacted products: SafeGuard Encryption.
Severity: 1/4.
Consequences: data reading, data creation/edition, data deletion.
Provenance: user console.
Creation date: 01/09/2014.
Identifiers: VIGILANCE-VUL-15250.

Description of the vulnerability

The Sophos Disk Encryption product can be managed by Sophos Enterprise Console (SEC).

When the Windows system is in sleep mode, an authentication is not always required when the system is awake. Usually, SEC changes the Windows configuration to require an authentication. However, this is not always done.

An attacker can therefore wake up a sleeping computer with no authentication, in order to read or alter disk data, even if Sophos Disk Encryption is used.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about SafeGuard Disk Encryption: