Sophos, a provider of network and endpoint security solutions, thas launched the latest addition to its endpoint solution portfolio, Intercept X with EDR.
Powered by Sophos’ deep learning neural network, which is trained on hundreds of millions of samples to look for suspicious attributes of malicious code to detect never seen before threats, Intercept X with EDR provides organisations with broad, expert analysis of potential attacks by comparing the DNA of suspicious files against the malware samples already categorised in SophosLabs.
Until now, effective investigation and incident response has only been achievable in organisations with a dedicated Security Operations Center (SOC) or specialised IT security team trained to hunt and analyse cyberattacks. With Sophos Intercept X Advanced with EDR, businesses of all sizes and those with limited resources can add threat tracking and SOC-like capabilities to their security defenses, reducing the time criminal hackers can hide in their network.
“’Am I under attack? Where is the attack taking place? How do I react?’ IT managers regularly face these time-sensitive questions, but without a SOC or trained security experts who know how to analyse potential threats, interrupting a cyberattack in real-time is very difficult,” said Dan Schiappa, senior vice president and general manager of products at Sophos.
Schiappa said the sheer volume of malware, frequency of attacks and wide availability of toolkits on the dark web have made EDR capabilities necessary to every business – especially those with limited IT security resources. “Sophos is providing the equivalent of a team of global cybersecurity experts and access to the rich knowledgebase SophosLabs has about the reputation of files and other information collected through terabytes of malware analysis,” he said. “IT managers can now quickly analyse and trace attack pathways without needing to reverse engineer files.”
