Sophos, a global leader in network and endpoint security announced the availability of Intercept X with malware detection powered by advanced deep learning neural networks. Combined with new active-hacker mitigation, advanced application lockdown, and enhanced ransomware protection, this latest release of the next-generation endpoint protection delivers previously unseen levels of detection and prevention.<\/p>\n
Deep learning is the latest evolution of machine learning. It delivers a massively scalable detection model that is able to learn the entire observable threat landscape. With the ability to process hundreds of millions of samples, deep learning can make more accurate predictions at a faster rate with far fewer false-positives when compared to traditional machine learning.\u00a0<\/p>\n
\u201cThe IT security climate is constantly changing, especially with the advanced capabilities of cyber threats and the non-traditional methods of attacks. The future of IT security lies in predictive protection; anticipating threats before they occur. At Sophos, by combining deep learning networks and industry-leading domain expertise, Intercept X helps augment endpoint security to enable organizations to effectively combat ransomware,\u201d said Sumit Bansal, Managing Director of ASEAN and Korea at Sophos.\u00a0<\/p>\n
\u201cOrganizations can no longer just act on a threat once it happens, instead organizations should anticipate and be prepared for unknown attacks. With Intercept X, organizations deploying various strategies can bring unparalleled next generation protection to their operations.\u201d added Sumit.<\/p>\n
Lim Wei Hoe, IT manager at Pappa Rich Group, a Sophos customer said, \u201cWe believe that Intercept X is the best possible protection against ransomware and other internet threats. With the Sophos deployment, our users stay productive. We no longer have to send the team out to clear up every system or office when something bad happens. Intercept X is the right choice because it\u2019s easy to manage, it\u2019s easy to deploy, and it gets the job done.\u201d<\/p>\n
\u201cTraditional machine learning models depend on expert threat analysts to select the attributes with which to train the model, adding a subjective human element. They also get more complex as more data is added, and these gigabyte-sized models are cumbersome and slow. These models may also have significant false positive rates which reduce IT productivity as admins try to determine what is malware and what is legitimate software,\u201d explained Tony Palmer, senior validation analyst with the Enterprise Strategy Group (ESG).\u00a0<\/p>\n
\u201cIn contrast, the deep learning neural network of Intercept X is designed to learn by experience, creating correlations between observed behavior and malware. These correlations result in a high accuracy rate for both existing and zero-day malware, and a lower false-positive rate. ESG Lab analysis reveals that this neural network model scales easily, and the more data it takes in, the smarter the model becomes. This enables aggressive detection without administrative or system performance penalty.\u201d said Tony.\u00a0<\/p>\n
This new version of Sophos Intercept X also includes innovations in anti-ransomware and exploit prevention, and active-hacker mitigations such as credential theft protection. As anti-malware has improved, attacks have increasingly focused on stealing credentials in order to move around systems and networks as a legitimate user, and Intercept X detects and prevents this behavior. Deployed through the cloud-based management platform Sophos Central, Intercept X can be installed alongside existing endpoint security software from any vendor, immediately boosting endpoint protection. When used with the Sophos XG Firewall, Intercept X can introduce synchronized security capabilities to further enhance protection.<\/p>\n
According to an ESG Lab Validation Report, every company should assume it is always under attack from cyber threats. In a recent ESG research, when asked the primary reasons they believe cybersecurity analytics and operations are more difficult today, more than a quarter of respondents said it was the difficulty of keeping up with rapid change in the threat landscape.\u00a0<\/p>\n
New features in Intercept X include:<\/strong><\/p>\n Deep Learning Malware Detection\u00a0<\/strong><\/p>\n \u2022 Deep learning model detects known and unknown malware and potentially unwanted applications (PUAs) before they execute, without relying on signatures<\/p>\n \u2022 The model is less than 20MB and requires infrequent updates\u00a0<\/p>\n Active Adversary Mitigations\u00a0<\/strong><\/p>\n \u2022 Credential theft protection \u2013 Preventing theft of authentication passwords and hash information from memory, registry, and persistent storage, as leveraged by such attacks as Mimikatz<\/p>\n \u2022 Code cave utilization \u2013 Detects the presence of code deployed into another application, often used for persistence and antivirus avoidance\u00a0<\/p>\n \u2022 APC protection \u2013 Detects abuse of Application Procedure Calls (APC) often used as part of the AtomBombing code injection technique and more recently used as the method of spreading the WannaCry worm and NotPetya wiper via EternalBlue and DoublePulsar (adversaries abuse these calls to get another process to execute malicious code)\u00a0<\/p>\n New and Enhanced Exploit Prevention Techniques\u00a0<\/strong><\/p>\n \u2022 Malicious process migration \u2013 Detects remote reflective DLL injection used by adversaries to move between processes running on the system<\/p>\n \u2022 Process privilege escalation \u2013 Prevents a low-privilege process from being escalated to a higher privilege, a tactic used to gain elevated system access<\/p>\n Enhanced Application Lockdown\u00a0<\/strong><\/p>\n \u2022 Browser behavior lockdown \u2013 Intercept X prevents the malicious use of PowerShell from browsers as a basic behavior lockdown\u00a0<\/p>\n \u2022 HTA application lockdown \u2013 HTML applications loaded by the browser will have the lockdown mitigations applied as if they were a browser\u00a0<\/p>\n First launched in September 2016, Intercept X has been proven in tens of thousands of organizations worldwide. Customers and partners who took part in the Early Access Program for this latest version of Intercept X commented on the new features.\u00a0<\/p>\n \u00a0<\/p>\n","protected":false},"excerpt":{"rendered":" Sophos, a global leader in network and endpoint security announced the availability of Intercept X with malware detection powered by advanced deep learning neural networks. Combined with new active-hacker mitigation, advanced application lockdown, and enhanced ransomware protection, this latest release of the next-generation endpoint protection delivers previously unseen levels of detection and prevention. Deep learning […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[34],"tags":[],"class_list":["post-1489","post","type-post","status-publish","format-standard","hentry","category-general"],"_links":{"self":[{"href":"https:\/\/malaysian-business.com\/portal\/wp-json\/wp\/v2\/posts\/1489","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/malaysian-business.com\/portal\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/malaysian-business.com\/portal\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/malaysian-business.com\/portal\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/malaysian-business.com\/portal\/wp-json\/wp\/v2\/comments?post=1489"}],"version-history":[{"count":1,"href":"https:\/\/malaysian-business.com\/portal\/wp-json\/wp\/v2\/posts\/1489\/revisions"}],"predecessor-version":[{"id":4927,"href":"https:\/\/malaysian-business.com\/portal\/wp-json\/wp\/v2\/posts\/1489\/revisions\/4927"}],"wp:attachment":[{"href":"https:\/\/malaysian-business.com\/portal\/wp-json\/wp\/v2\/media?parent=1489"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/malaysian-business.com\/portal\/wp-json\/wp\/v2\/categories?post=1489"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/malaysian-business.com\/portal\/wp-json\/wp\/v2\/tags?post=1489"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}