News

Sophos adds AI to its advanced email security


Global leader in network and endpoint security Sophos has today announced Sophos Email Advanced, the first email protection solution to offer predictive security with active threat protection (ATP), anti-phishing email authentication, and outbound scanning and policy support.

SophosLabs research discovered that 75 percent of malware in an organization is unique to that organization which indicates the majority of attacks are zero-day. The only way to combat that is with the deep learning neural network that is integrated into the Sophos Email sandboxing technology to quickly identify never-before-seen malicious files sent in email.

Email continues to be a primary attack vector for cybercriminals to launch a spear-phishing, localized or ‘spray and pray’ campaign. Sophos processes data from more than ten million inboxes protected by Sophos Email every day. Approximately 80 percent of the emails categorized as spam are found to have a malicious payload. As we’ve seen over the past few years, email is also the primary method used to spread ransomware.

A recent study by Sophos showed that more than 50 percent of organizations worldwide have suffered a ransomware attack in the last 12 months. Sophos Email Advanced includes CryptoGuard technology in the sandbox to stop ransomware before it makes it to your employee’s inboxes. Another primary defence against ransomware and phishing attacks is Time-of-Click protection, which scans the URL at the time of click, preventing stealthy and delayed attacks. Outbound scanning and multiple policy support can prevent a compromised organization from unintentionally forwarding malware or sending spam out to customers or partners, reducing the community impact of an attack and protecting an organization’s reputation.

“With the growth of cloud-based platforms such as Office365 and Google G-Suite, organizations need an advanced security solution that detects zero-day threats and advanced malware. Ransomware-As-A-Service (RaaS) and packaged malware kits have made it easier for cybercriminals to customize and deliver more complex, targeted attacks through email,” said Bill Lucchini, senior vice president and general manager, Messaging Security Group at Sophos. “IT needs smarter, predictive security to detect and stop today’s threats. Sophos Central cloud-based management of Sophos Email Advanced can deliver the highest levels of protection to secure any email platform, allowing every user to trust their inbox again.”

When managed through the Sophos Central management platform, Sophos Email is a key pillar of an integrated data protection system for the end user. IT professionals can manage Intercept X endpoint protection alongside Sophos Email Advanced and Phish Threat user awareness training, providing a stronger defence to detect and block threats, and train users against being the weakest link in their security strategy. Threat data from Sophos Email Advanced can enhance Synchronized Security intelligence and contribute to the overall community intelligence within SophosLabs.

New features in Sophos Email include:

Active Threat Protection (ATP)

  • Sophos Sandstorm cloud sandbox and advanced URL protection  
  • Artificial intelligence built into Sophos Email sandboxing is able to detect and block unknown malware.
  • Time-of-Click advanced URL protection checks the website reputation or email links before delivery and at the time you click –blocking stealthy, delayed attacks
  • Time-of-Click advanced URL protection checks the website reputation or email links before delivery and at the time you click –blocking stealthy, delayed attacks

Anti-Phishing Email Authentication

  • Combination of SPF, DKIM, and DMARC authentication techniques and email header analysis
  • Sender Policy Framework (SPF) to declare and verify who can send e-mails from a given domain
  • Domain Keys Identified Mail (DKIM) e-mail authentication system based on asymmetric cryptographic keys
  • Domain Message Authentication Reporting & Conformance (DMARC) to determine what to do when messages fail SPF or DKIM checks

Outbound Scanning and Multi-Policy Support

  • Spam and virus scanning of outbound email scans to prevent unintended distribution of threats and protect reputation
  • Customized security policies can be created for individuals, groups or the whole domain in minutes

Deployment and Data Processing Location Options

  • Available through Sophos Central cloud-based management platform
  • Sophos Secure Email Gateways can be deployed as an on-premise appliance or within the newest version of the Sophos XG Firewall
  • Message processing centers in Ireland, USA, and Germany
  • Sophos Sandstorm locations in Ireland, USA, and Japan

Sophos Email Advanced is available from registered Sophos partners worldwide.

Facebook Comments

TechTrends Media Editorial

We cover Technology and Business trends in Kenya and across Africa. Send tips to editor@techtrendske.co.ke

Have anything to add to this article? Leave us a comment below

Back to top button