5 things to consider when choosing a sandbox solution

Sophos SandstormMany organizations are considering next-generation solutions to deal with the unknown threats cybercriminals use to evade traditional defenses. One technology that’s had a fair share of hype is the sandbox.

A sandbox is an isolated, safe environment that imitates an entire computer system to execute suspicious programs, monitor their behavior, and understand their intended purpose, without endangering an organization’s network.

Choosing a sandboxing solution can be a challenge due to the numerous options available on the market. Consider the following five points before you make your decision.

Continue reading

EU Parliament passes the General Data Protection Regulation – why it’s a good thing

EU data protectionAfter four years of preparation to overhaul the European Union’s data protection rules, the members of the EU Parliament gave final approval yesterday to the EU General Data Protection Regulation (GDPR).

The GDPR is a big step forward for better protection of EU residents’ data with a consistent set of regulations across borders.

The GDPR applies to businesses of all sizes, anywhere in the world, that hold information on European residents, and shows that Europe is taking the subject of data protection seriously.

We think the new regulation will make data protection a board-level issue, and it’s a signal to all companies who do business in the EU that they need to protect their customers’ data. Our advice is: don’t ignore the regulation and think “I won’t get fined.”

Continue reading

What is a sandbox? And why do I need one to defend against advanced threats?

sophos-sandstormIT teams in organizations of all sizes understand that sophisticated cyberattacks can use unknown malware to evade traditional gateway and endpoint protection.

These advanced persistent threats, or APTs, use custom-developed targeted attacks to gain access to a network and remain undetected for long periods of time. The success of APTs depends on staying under the radar as long as possible, using evasive coding techniques to slip past traditional security barriers and steal sensitive data.

This is why many organizations are considering additional “next-generation” solutions to deal with these unknown threats. One technology that’s had a fair share of hype is the sandbox. A sandbox is an isolated, safe environment, which imitates an entire computer system. In the sandbox, suspicious programs can be executed to monitor their behavior and understand their intended purpose, without endangering an organization’s network.

Continue reading

Sophos named a Top Player in Radicati’s Enterprise Mobility Management Market Quadrant

EMMThe Radicati Group has just released its Enterprise Mobility Management – Market Quadrant 2016 report, and we’re proud that Sophos has earned a place in the Top Players quadrant, demonstrating our leadership in the industry.

Radicati, an independent market research firm not aligned with any vendor, evaluates enterprise mobility management (EMM) vendors based on feature functionality and strategic vision. Radicati says Top Players are “the current market leaders, with products that offer both breadth and depth of functionality,” and have a “solid vision for the future.”

As a Top Player, our EMM product, Sophos Mobile Control, is considered a “complete EMM solution” with “comprehensive feature sets” in the areas of mobile device management (MDM), mobile application management (MAM), mobile security, and mobile content management.

Continue reading

Getting started with enterprise mobility management

SMC 6.0Mobile devices are essential for the modern information worker. According to Forrsights Workforce Employee Survey, 74% of information workers use two or more devices for work, including desktops, laptops, smartphones and tablets.

Many of those employees are using the same device to manage personal and professional tasks, yet they still want to keep their personal and corporate data separate.

In the era of enterprise mobility, organizations need visibility and control over who is moving their corporate data, where, and with which apps and devices.

An enterprise mobility management (EMM) solution can help organizations move away from restrictive device and content policies and towards secure environments where protected data is easily accessible from anywhere for on-the-go employees.

Continue reading

Bringing endpoint and firewall together is an idea so simple it’s revolutionary

Synchronized SecurityAs the information security industry matures, we’re beginning to come to terms with the reality that there is no such thing as perfect prevention. Conventional wisdom in information assurance tells us to assemble best-of-breed network and endpoint components into arrays of controls that will provide some reasonable measure of defense in depth. While the practice is correct in its ingredients, the recipe is lacking.

Until now, unmediated coordination between protection at the physical or virtual network layer, and the endpoints that make up those networks, hasn’t been possible. IT and security professionals pay a price for this every day: missed cues that might have prevented or detected an attack; delays in responding to and mitigating a detected threat; an abundance of alerts with unknown relevance or outright irrelevance; and difficult, time-consuming investigations that often lead nowhere.

The missing recipe is synchronized security – enabling meaningful and contextual exchange of information between the familiar ingredients of endpoint and network protections.

Continue reading

Sophos and Gartner explain: why synchronized security is the next leap forward

GartnerAttackers today are increasingly sophisticated, using multiple techniques and points of entry to bypass defenses and evade detection. In response, most vendors design their products to wrap endpoints and users in layers of security.

For example, to defend against web-based attacks you might have a cloud-based web gateway to protect users when they surf the web from a remote location; an endpoint-based advanced persistent threat (APT) detection agent; and a next-generation firewall detecting malicious traffic as the malware calls home.

Unfortunately, the time, cost and complexity of implementing additional layers of technology can be overwhelming: now you have multiple endpoint agents, multiple management consoles, and multiple security vendors to deal with.

And while this kind of complicated security system may stop the individual elements of an attack, the separate layers of protection do so without coordinating their response. This is a recipe for failure.

Continue reading