What is a one sentence summary of your feature request?
Introduce granular control over data egress to VirtualBox environments, including clipboard, drag-and-drop, and shared folder interactions.
Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.
Currently, CoSoSys EPP lacks built-in mechanisms to monitor and control data movement between host systems and VirtualBox virtual machines. This creates a potential data exfiltration vector, as users can bypass endpoint controls by transferring files or sensitive data via clipboard copy-paste, drag-and-drop, or VirtualBox shared folders. Adding the ability to control and log these specific data flows would significantly enhance security by extending DLP capabilities into virtual environments. It would also improve workflow efficiency by allowing administrators to fine-tune access rules—enabling trusted actions while blocking or auditing high-risk interactions.
How do you currently solve the challenges you have by not having this feature?
Today, we rely on host-level policies, manual configuration of VirtualBox settings, and user education to limit data transfers, which is difficult to enforce and audit consistently. These workarounds lack the visibility and control needed for comprehensive data loss prevention, particularly in regulated or high-security environments.