Today: January 18, 2019, 4:32 am
  
Computer & Technology

Sophos Introduces Lateral Movement Protection to XG Firewall to Stop Advancing Cyberattacks

New lateral movement protection exposes blind spots on network switches or LAN segments with innovative Sophos Synchronized Security technology

 

PR-Inside.com: 2018-12-12 13:53:02
Sophos (LSE: SOPH), a global leader in network and endpoint security, today announced that its next-generation Sophos XG Firewall now includes lateral movement protection to prevent targeted, manual cyberattacks or exploits from infiltrating further into a compromised network.


The SophosLabs 2019 Threat Report discusses a rise in targeted ransomware. With the SamSam ransomware campaign estimated to have earned more than $6.5 million, it is not surprising that criminals are attracted to this method. In these attacks, cybercriminals target weak entry points and brute-force Remote Desktop Protocol (RDP) passwords. Once in, they move laterally, working one step at a time to steal domain admin credentials, manipulate internal controls, disable back-ups and more. By the time most IT managers notice what’s happening, the damage is done.


“Many organizations are set up to protect against automatic bots, but not interactive, human-driven attacks. If active adversaries get into a system they can ‘think laterally’ to troubleshoot roadblocks, evade detection and move around. It’s hard to stop them unless the right security measures are in place,” said Dan Schiappa, senior vice president and general manager of products at Sophos. “Most lateral movements happen on the endpoint, which is why synchronizing security is important. Attackers will attempt to advance using non-malware techniques, such as exploits, Mimikatz and privilege escalation. The network needs to know to respond and automatically shut down or isolate infected machines before anyone or anything spreads further.”

Similar cybercat-burglar-like attacks, such as BitPaymer, Dharma and Ryuk, use a similar lateral movement playbook to hand deliver ransomware. These attacks are very different from Ransomware-as-a-Service (RaaS) toolkits sold on the dark web. Sophos expects manual control attacks to continue into 2019.


“Stopping lateral movements - from active adversaries or worm-type exploits – by sharing intelligence between the firewall and endpoints and automatically isolating infected systems is critical for every organization today,” said Schiappa. “Unfortunately, many business environments could have blind spots on their network switches or LAN segments, and these can become secret launch pads for attacks. The new features in Sophos XG Firewall prevents threats from spreading, even where the firewall doesn’t have direct control over traffic.”

Lateral Movement Protection is enabled through synchronized security


The Sophos XG Firewall automatically interacts with Sophos’ endpoint products, including its new Intercept X Advanced with Endpoint Detection and Response (EDR), to deliver this new layer of protection. These essential security anchors connect via the Security Heartbeat in Sophos’ Synchronized Security technology. This creates an intelligent solution that can proactively predict and protect against threats, detect and prevent further infection by automatically isolating machines, and remediate the infection. Security Heartbeat technology enables the automatic isolation of high-risk endpoints from other endpoints on the same broadcast domain or network segment.


Additional new and enhanced features in Sophos XG Firewall include:

• Protection Enhancements

o Deeper, broader IPS coverage with increased granularity in patterns

o JavaScript cryptojacking protection

• Sandstorm Sandboxing Enhancements

o Intercept X integration to identify zero-day threats before they enter the network

o Deep behavioural, network and memory analysis with machine learning, CryptoGuard, and exploit detection

• Networking Enhancements

o New Sophos Connect IPSec VPN client with support for Synchronized Security

• Education Features

o Chromebook client authentication support for user-based policy and reporting

o User/group policy support for SafeSearch and YouTube restrictions


Availability

Sophos XG Firewall is available from registered Sophos partners worldwide. A free trial of XG Firewall is available today. The ability to manage XG Firewall from the cloud management platform Sophos Central is available through an Early Access Program. Additional information about the XG Firewall can be found on Sophos.com.

Press Information
Sophos
Sheikh Zayed Road

Shaina
PR Consultant
0502531818
email
www.oakconsulting.biz/

Published by
Nimi D'souza
+971507343840
e-mail
www.oakconsulting.biz



# 613 Words
Related Articles
More From The Author
Breathe easy at home with Blueair’s revolutionary [..]
Dubai UAE, November 29, 2018: According to a recent report by the World Health Organisation (WHO) nine in ten people [..]
Site24x7 Introduces AI-driven Microsoft Azure Monitoring and [..]
Site24x7, the cloud-based performance monitoring solution for DevOps and IT Operations, today announced the introduction of [..]
Sophos Adds Endpoint Detection and Response to [..]
Sophos (LSE: SOPH), a global leader in network and endpoint security, today launched the latest addition to its endpoint solution [..]
Growth Opportunities Drive International Organic Product Suppliers [..]
The demand for organic and natural products across categories ranging from food and beverage, beauty and lifestyle are seeing a [..]
Middle East Organic & Natural Products Expo [..]
The Middle East Organic & Natural Products Expo 2018 is returning to Dubai Convention & Exhibition Centre on November 18-20. [..]
 
More From Computer & Technology
Suprema to license BioSign under-display fingerprint algorithm [..]
SEOUL, KOREA, Jan 14, 2019 - (ACN Newswire) - Suprema, a global leader in biometrics and ID solutions, announced that [..]
Trillium Appoints Mahbubul Alam as CMO and [..]
Appointment and Dual Roles attract attention from Cloud Data Management and Automotive Industries LAS VEGAS, NV, Jan 9, 2019 [..]
1.5 Trillion Reasons to Meet with Trillium [..]
LAS VEGAS, NV, Jan 5, 2019 - (ACN Newswire) - Trillium Secure, Inc. (Trillium), the leader in secure data management, [..]
Leading the pack with automation experts BIAMI.IO
Leading the pack with automation experts BIAMI.IO Leading automation technology provider, BIAMI.IO has announced exciting new [..]
Cloud Analogy is all poised to unleash [..]
Cloud Analogy comprises of a team of 100 + experts with some of the outstanding Salesforce developers, designers and project [..]

Disclaimer: If you have any questions regarding information in this press release please contact the company added in the press release. Please do not contact pr-inside. We will not be able to assist you. PR-inside disclaims the content included in this release.