The global leader in network and endpoint security, Sophos, announced an additional feature to its next-generation Sophos XG Firewall known as the lateral movement protection. It prevents targeted, manual cyber-attacks or exploits from infiltrating further into a compromised network.
The Sophos XG Firewall automatically interacts with Sophos’ endpoint products, including its new Intercept X Advanced with Endpoint Detection and Response (EDR), to deliver this new layer of protection.
These essential security anchors connect through the Sophos’ Synchronized Security technology. It can proactively predict and protect against threats, detect and prevent further infection by automatically isolating machines, and repair the infection. Security Heartbeat technology , as the company calls it, enables the automatic isolation of high-risk endpoints from other endpoints on the same broadcast domain or network segment.
Among other upgrades in the Sophos XG Firewall include deeper, broader IPS coverage with increased granularity in patterns, JavaScript crypto-jacking protection, Intercept X integration to identify zero-day threats before they enter the network; deep behavioral, network and memory analysis with machine learning, CryptoGuard, and exploit detection; new Sophos Connect IPSec VPN client with support for Synchronised Security, Chromebook client authentication support , and user/group policy support for SafeSearch and YouTube restrictions.
Dan Schiappa, senior vice president and general manager of products at Sophos said: “Many organizations are set up to protect against automatic bots, but not interactive, human-driven attacks. If active adversaries get into a system they can ‘think laterally’ to troubleshoot roadblocks, evade detection and move around. It is hard to stop them unless the right security measures are in place. Most lateral movements happen on the endpoint, which is why synchronising security is important. Attackers will attempt to advance using non-malware techniques, such as exploits, Mimikatz and privilege escalation. The network needs to know to respond and automatically shut down or isolate infected machines before anyone or anything spreads further.”
You may download a free trial of the Sophos XG Firewall in this link.