FeatureSophos’ aim is to protect organisations of all types from cybercrimes which Sophos does it in a few ways. First, Sophos provide companies with products that prevent threats and unwanted software from infecting your devices and networks. Sophos has a very successful endpoint protection product called Intercept X.
Sophos has an extended detection and response product used by advanced threat hunters to do security operations. Sophos has recently released a new next-gen firewall dubbed XGS to inspect encrypted traffic on the network security side.
Sophos provides a managed service like Sophos Managed Threat Response that continuously monitors customer environments
Cybercriminals are using TLS encryption to hide their malware, and Sophos has precise capabilities to inspect this traffic at wire speed, which is something most firewalls can’t do.
Sophos provides a managed service like Sophos Managed Threat Response MTR that continuously monitors customer environments for those that do not have a security team, and a Rapid Response team to help companies who find themselves under active attack. Lastly, Sophos provides insight into current threats and adversary tactics, and advice on how to best protect yourself through our various outreach channels.
Ransomware groups have taken advantage of remote working to cripple certain organisations
During the pandemic, Sophos has seen continued growth in the social extortion side of ransomware. Most highly skilled ransomware groups have adopted the encrypt and leak extortion scheme pioneered by the Maze group in 2019 and some are even considering an exfiltration only model. Some ransomware groups have also taken advantage of the pandemic’s remote working conditions to cripple certain organisations, notably educational institutions who rely on remote learning.
Sophos provides insight into current threats and adversary tactics
Overall, there have been less victims in 2020 but the lower volume has been offset by ever more damaging attacks and much higher ransom demands.
Endpoint Detection and Response EDR and Extended Detection and Response XDR are important tools for threat hunting. What these essentially do, is help organisations to hunt across their environment to detect indicators of compromise IOCs and indicators of attack IOA.
Sophos has seen continued growth in the social extortion side of ransomware
Irrespective of the size of enterprises, native endpoint, server, firewall, and email security are foundational for any IT security strategy. Technology like synchronised security that integrates – native endpoint, server, firewall, and email security- is need of the hour as it delivers better protection – and better manageability – for organisations of any size.
Doing security right is difficult. That’s why Sophos always say there’s no silver bullet in security. A good start, however, is building a solid security foundation. This includes having the right people, processes and tools in place to give you a fighting chance. A robust security culture ensures everyone is on duty when it comes to protecting the enterprise.
Clear, easy-to-follow, and conservative processes will prevent simple mistakes from harming your business. Using the very latest prevention and protection technologies will defend your organisation against attackers when the first two fail. Taken together, these three are just a starting point on the never-ending road to a mature security programme.
Sophos provide companies with products that prevent threats from infecting your devices and networks and has successful endpoint protection product.
