Don’t Run Another Phish Test Until You Read This

Allow Listing CyberHoot in Sophos EndPoint Protection

1st May 2025 | HowTo, MSP, Technology

When Phish testing environments where Sophos EDR is present, you will need to enable allow listing and add the CyberHoot addresses. Otherwise the Website Management defenses will intercept any attempt to click on a link taking you to a nefarious phish testing website.

There are three steps to accomplish this as shown in the graphic above.

From Sophos Central, click on “Global Settings”
From Global Settings, click on “Website Management”
From Website Management, click on “Add” and then define the domains, individual IP addresses, or CIDR for CyberHoot as outlined in the article below.

CyberHoot Mail Relays to Add to your Allow-Lists

Latest Blogs

Stay sharp with the latest security insights

Discover and share the latest cybersecurity trends, tips and best practices – alongside new threats to watch out for.

5th August 2025 | Blog

Stopping Token Theft: How Microsoft’s Protections Prevent BEC Attacks

Welcome to our two-part blog series on Microsoft’s new email security enhancement now included in Office 365 P1...

29th July 2025 | Blog

Why Hackers Love MSPs and What We’re Gonna Do About It

"Being an MSP today is like wearing a neon sign that says, ‘Hack me! I’m the gateway to 100...

15th July 2025 | Blog

Stop the Swap: How to Protect Yourself from SIM Swapping Attacks

Ever had your phone suddenly lose service for no reason, followed by a flood of “reset your password”...

Get Started All Posts

Get Started

Ready to soar above security threats?

Get sharper eyes on human risks, with the positive approach that beats traditional phish testing.

Get Started Book a Demo