In Q1 2020, 23 percent of malware detected by Sophos used TLS (Transport Layer Security) to disguise malicious communications. The widespread use of encryption prevents criminals to steal or tamper with sensitive data and to impersonate legitimate organizations online. Despite obvious benefits, many organizations are reluctant to perform deep-packet inspection of their ingoing and outgoing network traffic. The recently unveiled Sophos XGS Series firewall appliances can inspect TLS traffic across all protocols and ports, as various malware is known to use non-standard IP ports for communication.
Source: https://www.helpnetsecurity.com/2021/04/27/organizations-overlook-encrypted-traffic/