An advanced persistent threat (APT) malware campaign seen in August and September 2014 is the subject of new research by one of our threat analysts at SophosLabs.
Just like other recent examples of APTs, this malware campaign was based in China, which tends to get a lot of media attention and hype.
Sophos is calling this malware campaign “Rotten Tomato,” in reference to the Tomato Garden campaign; and because some of the samples were rotten in the sense that they were not effectively executed.
There are so many ways a cybercriminal can attack you that it might seem like security is a losing effort. Fortunately, that’s just a misconception. Security can be fairly simple if you know what to do.
That’s why we’re supporting Cyber Streetwise, a UK Government National Cyber Security initiative aimed at changing consumer and small business attitudes to online security.
As Minister for the Digital Economy Ed Vaizey said, “small businesses remain particularly vulnerable to cyber security breaches,” often because they don’t take basic security measures. Here are five easy things you can do to keep your business safe.
A new Up2Date package for Sophos UTM is available as of today.
This update will disable SSLv3 support for many services to eliminate the risks from CVE-2014-3566 (POODLE).
Furthermore, we have introduced some additional fixes and improved the Up2Date client in anticipation of the ucoming 9.3 release.
Dropbox usernames and passwords were leaked online this week. It’s the latest in a string of recent data breaches involving compromises of third-party websites that take advantage of password re-use to get at users’ accounts on multiple services.
In 2014 alone, millions have had their private information and passwords compromised, leading to what some are calling data breach “fatigue.”
Dropbox was quick to respond, denying a breach on their end while urging their users to enable tighter password security measures.
We’re pleased to announce the availability of Sophos iView, our new reporting appliance add-on for UTM. Sophos iView extends and enhances the Sophos UTM’s already outstanding on-box reporting, adding consolidated reporting across multiple UTMs, compliance reporting, and long-term log storage.
Back in the summer we ran a little survey on SpiceWorks and almost 400 Small and Medium Business IT managers gave us their view on the main challenges they have with their current firewall. But some of the results weren’t exactly what we were expecting.
The #1 rated issue was the lack of reporting options
35% of respondents said their firewall provides insufficient reporting and 22% also cited lack of visibility into infected machines which speaks to a lack of useful insight too. Users are hungry for bandwidth and regulatory compliance is becoming increasingly important so it’s not really surprising that IT managers crave a better view into what’s happening on their network.
What is surprising is that so few firewall vendors offer their users what they need. Compare the leading UTM/Firewall vendors and you’ll find just one who has over 1000 reports available built-into the appliance. I’ m sure you can guess who check here if you can’t! At Sophos we prioritize reporting and in addition to the on-box reports we also offer Sophos iView our dedicated virtual reporting appliance for those that simply need more reports or want to correlate reporting across multiple appliances.
Sophos was among the select companies that Forrester Research, Inc. invited to participate in its report, The Forrester Wave™: Enterprise Mobile Management, Q3 2014. In this evaluation, we were cited as a leader in enterprise mobile management (EMM).
Each of the vendor products evaluated, including our EMM product Sophos Mobile Control, has a large install base, more than $10 million in revenue in 2013, and significant enterprise interest.
Sophos Mobile Control (SMC) received the highest possible rating in the categories of Architecture and scale; Email and directory support; Employee experience; Support; Training; and Partners. Sophos earned the top ranking among all evaluated vendors in Employee experience.