[boopboop]

Sophos has been around for a very long time. I don't understand how an anti-virus company could not take action to prevent this time of thing from happening.

1) Why don't they have a secure hash of each of the files and add that to a whitelist of files never to delete?

2) "You want to ensure your secondary option (when cleanup is not available or does not work) to be set to 'deny access' and not delete or move." Is this not the default configuration?