Story image

Sophos targets unknown application traffic through new firewall offering

06 Nov 2017

Security firm Sophos says the risks arising from unknown applications on a network have been significantly improved in its latest firewall upgrade, doubling down on protection for customers seeking more visibility into their network traffic.

 Dan Schiappa, senior vice president and general manager of Enduser and Network Security Groups at Sophos, says that a recent study of IT professionals showed that around 60% of network traffic is unknown.

IT professionals are concerned about the security risks associated with this unknown traffic.

Sophos upgraded its XG Firewall by using what it calls Synchronized Security, which obtains information from the endpoint.

The XG Firewall can then identity, classify and control all previously unknown applications on the network, including those that don’t have signatures or those that use HTTP or HTTPS connections.

The company says the upgrade is an ‘industry first’ and can reduce risks associated with unknown network traffic.

 “The latest version of the Sophos XG Firewall represents a significant improvement in network application visibility, especially in regards to unknown applications. It’s an innovative solution to an industry-wide problem that has been getting increasingly challenging over time, comments IDC Security Product research director Rob Ayoub.

Synchronized App control automatically associated detected applications with appropriate categories. Administrators are able to assign unknown apps to categories that can block or prioritise them.  It also delivers interactive application reporting into daily traffic activity.

‘Synchronized App Control has improved visibility and increased the IT administrators’ ability to proactively manage network traffic. This new technology is a game changer for the IT professional who is no longer prepared to accept the gaps and blind spots that stand alone firewall and endpoint solutions have created in their environments,” comments Schiappa.

Sophos has also introduced new hardware appliances as part of its XG Series.

The new hardware provides a modular connectivity system with a variety of integrated connectivity and FleXI Port modules.

“The addition of two fail-safe bypass port pairs on-board every 1U appliance and an optional bypass FleXi Port module for all 1U and 2U XG Series models, plus optional Power over Ethernet (PoE) modules make it easy to enable Synchronized Security in any environment,” the company says.

Sophos was lamed as a ‘leader’ in Gartner’s Magic Quadrant for Unified Threat Management (SMB Multifunction Firewalls) in June. It was also named a ‘Visionary’ in Gartner’s Magic Quadrant for Enterprise Network Firewalls.

Google puts Huawei on the Android naughty list
Google has apparently suspended Huawei’s licence to use the full Android platform, according to media reports.
Using data science to improve threat prevention
With a large amount of good quality data and strong algorithms, companies can develop highly effective protective measures.
General staff don’t get tech jargon - expert says time to ditch it
There's a serious gap between IT pros and general staff, and this expert says it's on the people in IT to bridge it.
ZombieLoad: Another batch of flaws affect Intel chips
“This flaw can be weaponised in highly targeted attacks that would normally require system-wide privileges or a complete subversion of the operating system."
Forget endpoints—it’s time to secure people instead
Security used to be much simpler: employees would log in to their PC at the beginning of the working day and log off at the end. That PC wasn’t going anywhere, as it was way too heavy to lug around.
DimData: Fear finally setting in amongst vulnerable orgs
New data ranking the ‘cybermaturity’ of organisations reveals the most commonly targeted sectors are also the most prepared to deal with the ever-evolving threat landscape.
IXUP goes "post-quantum" with security tech upgrade
The secure analytics company has also partnered with Deloitte as a reseller, and launched a SaaS offering on Microsoft Azure.
ExtraHop’s new partner program for enterprise security
New accreditations and partner portal enable channel partners to fast-track their expertise and build their security businesses.