[metaslider id=2951] … Read More
Archives for March 2014
Whitepaper by Sophos – Advanced Persistent Threats
Network security is all about ensuring you close the holes an attacker can get through. But you also need measures in place to detect the signs of an attack in progress to stop it from unfolding. In this paper we’ll explain how a multi-faceted approach to protect against APTs including layers of defense can reduce the risk of attacks.
To view all of our whitepapers please click here – >
Hackers turning to Tor network to hide evolved malware, warns Kaspersky Lab
Criminals plan to release a fresh wave of advanced cyber attack campaigns using the anonymising Tor network, according to Kaspersky Lab.
Kaspersky Lab senior security researcher Sergey Lozhkin issued the warning during a webinar attended by V3, citing the recently discovered ChewBacca and evolved Zeus Tor malware as proof of their claim.
“The Tor network started small but lots of hackers and cyber criminals have discovered the benefits of storing their communities and malware there. We’ve seen malware developers creating malware that communicates with the Tor network and passes its command-and-control servers (C&C) through it. This is because when you create a resource in Tor it’s almost impossible to know who owns it or where it’s hosted,” he said.
Sophos Delivers Advanced Threat Protection for the Small and Mid-Market
Latest Version of Sophos UTM Brings Enterprise Features to the Masses; Improves Performance; Makes Advanced Threat Protection Practical and Affordable
Oxford, UK – Sophos today announced an extensive update to its award-winning Unified Threat Management solution, Sophos UTM. With more than 100 new features, the highlight of the new UTM platform is bringing Advanced Threat Protection (ATP) to the small and mid-market, capabilities that were previously only available to large enterprises.
Developed by SophosLabs, this new Sophos UTM approach brings together multiple technologies to rapidly identify and isolate infected clients and prevent communication with malicious command and control hosts. This latest version introduces botnet protection and cloud-based sandboxing to expand on the Sophos UTM’s existing multi-layer Firewall, Web, Email and Endpoint protection. This extends the Sophos commitment to small and mid-market companies, delivering access to advanced protection without the complexity and cost normally associated with such functionality.
“The initial stages of targeted attacks can often go unnoticed by security systems that don’t control incoming and outgoing traffic. For organizations with limited IT resources, investing time and money in a dedicated ATP solution to detect these early signs is simply not realistic, given how tricky, complex and fast moving this type of traffic is,” says Chris Kraft, vice president, product management, Sophos. “That’s what we wanted to change. Today, with a few simple clicks, users get advanced protection without needing to be full-time security experts themselves.”
This new release also significantly enhances the speed of security scanning, with initial data showing the new performance optimized IPS doubling throughput speed in test environments. The Email, Web, and Network Protection modules all experience significant enhancements, including:
- Simplified Email Encryption and DLP – Sophos SPX technology eliminates need for a separate Public Key Infrastructure and policy-based DLP can trigger automatic encryption
- Smarter Web Control – streamlined policy setup enables granular user control and transparent web filtering of https traffic provides seamless protection
- Mobile Access Control – enhances Wi-Fi and VPN security by combining Sophos UTM with Mobile Device Management functionality in Sophos Mobile Control
- Performance Optimized IPS – intelligent processes and pattern management deliver enhanced scanning speeds to rapidly block network attacks and prevent breaches
- Botnet/Command and Control Protection – Sophos Advanced Threat Protection identifies and blocks infected machines communicating with malware command and control servers
“The UTM market is one of the most competitive in security. Numerous features and applications have been added over the past few years, and we’re increasingly seeing solutions are providing more effective security and better performance,” said John Grady, Research Manager, Security Products and Services, IDC. “This latest release from Sophos continues to simplify complex technologies. SPX email encryption is an example of that and is a differentiated approach among other UTM vendors.”
“Students are smart and always find ways to circumvent security, so schools are always in need of better ways to manage their web access and block inappropriate content,” says Bart Wilson, systems support manager, from Twotrees Technologies LLC, a Sophos partner. “UTM 9.2 is a huge step forward in solving this problem. By adding https traffic to web filtering in transparent mode, Sophos will help our customers to take back control – especially with so many students browsing on mobile devices.”
For additional information on all of the features in Sophos UTM 9.2 and extra information on Sophos’ network security solutions, please visit contact us or download the datasheet on Sophos 9.2