Cybersecurity Company, Sophos Unveils Xstream Version of its XG Firewall to Secure Encrypted Network Traffic – Technext

Posted on by

Sophos,a global leader in next-generation cybersecurity, today introduced a new Xstream architecture forSophos XG Firewall with high-performance Transport Layer Security (TLS) traffic decryption capabilities.

This enables it eliminate significant security risks associated withencrypted network traffic, which is often overlooked by security teams due to performance and complexity concerns.

XG Firewall now also featuresAI-enhanced threat analysis fromSophosLabsand accelerated application performance.

Sophos today also published the SophosLabs Uncut article, Nearly a Quarter of Malware now Communicates Using TLS, which explains how23%of malware families use encrypted communication for Command and Control (C2) or installation.

The article details,for example, threecommon and ever-present Trojans Trickbot, IcedID and Dridex that leverage TLS during the course of their attacks.Cybercriminals also use TLS to hide their exploits, payloads and stolen content and to avoid detection.

In fact, 44% of prevalent information stealers use encryption to sneak hijacked data, including bank and financial account passwords and other sensitive credentials, out from under organizations.

AsSophosLabsresearch demonstrates,cybercriminalsare boldlyembracingencryptionin anattempt to bypass security products.Unfortunately, most firewalls lack scalable TLS crypto capabilities and are unable to inspect encrypted traffic without causing applications to break or degrade network performance

With the new Xstream architecture in XG Firewall, Sophos isproviding critical visibility into an enormous blind spot while eliminating frustrating latency and compatibility issues with full support for the latest TLS 1.3 standard. Sophos internal benchmark tests have clocked a two-fold performance boost in the new XG TLS inspection engine as compared to previous XG versions. This is a game-changer.

Latency too often deters IT admins from using decryption, as seen in an independent Sophos survey of 3,100 IT managers in 12 countries. The survey white paper,The Achilles Heel of Next-Gen Firewalls, reports that while 82% of respondents agreed TLS inspection is necessary, only 3.5% of organizations are decrypting their traffic to properly inspect it.

Inspection of TLS 1.3 to detect cloaked malware:New port-agnostic TLS engine doubles crypto operation performance over previous XG versions

Optimized critical application performance:New FastPath policy controls accelerate the performance of SD-WAN applications and traffic, including Voice over IP, SaaS and others, to up to wire speed

Adaptivetraffic scanning: The newly enhancedDeep Packet Inspection (DPI)engine dynamically risk-assesses traffic streams and matches them to the appropriate threat scanning level, enhancing throughput by up to 33% across most network environments

Threat analysis with SophosLabs intelligence: Provides network administrators with the SophosLabs AI-enhanced threat analysis needed to understand and adjust defences to protect against a constantly changing threat landscape

Comprehensive cloud management and reporting in Sophos Central: Centralized management and reporting capabilities in Sophos Central provide customers with group firewall management and flexible cloud reporting across an entire estate without additional charge

Integration withSophos Managed Threat Response (MTR)service: Customers of XG Firewall who also subscribe to the Sophos MTR Advanced service will have deeper actionable intelligence to prevent, detect and respond to threats, as a result of the integration

Sophos new XG Firewall offers a wide array of enterprise-calibre features, with a growing installed base that is now one of the industrys most widely deployed next-generation firewalls, Eric Parizo, senior analyst for enterprise IT strategy, (according to Omdia, Enterprise Decision Maker, January 2020.

Results are not an endorsement of Sophos or SophosLabs. Any reliance on these results is at the third-partys own risk. XG Firewall can win against industry competitors in large part because of Sophos Central, its SaaS-based, single-pane-of-glass management system for overseeing the deployment, management, policy, updates, and response, with optional log management and analytics.

This cloud management platform with the Firewall Management and Reporting feature, plus the TLS inspection, position Sophos XG Firewall as a compelling option for a wide variety of organizations.

At Convergent Information Security Solutions, we are engaged in the management and monitoring of both perimeter and internal cybersecurity for our customers, and until now we were somewhat limited in ourability to monitor SSL/TLS encrypted data streams. Sophos XG Firewallhelps us solve this problem efficiently and affordably with thenew accelerated DPI engine in thelatestversion.

This,combined with new automatically-managed custom IPS rule sets, gives us much more visibility into encrypted traffic going through the network than we ever had before. This feature will immensely improve our customers security and we consider this to be critical, based how broadly cybercriminals are capitalizing on TLS encryption to cover-up and carry out their attacks, Bruce Kneece concludes.

Were also aware of how fast cyberattacks are morphing. With the ability to scan for potentially dangerous files transported inside of SSL/TLS tunnels, in addition to thezero-day detection engine of Sandstorm, we can provide better, faster customer protection, detection and service.

Sophos XG Firewall is available in the cloud-basedSophos Centralplatformalongside Sophos entire portfolio of next-generation cybersecurity solutions. Sophos uniqueSynchronized Securityapproach empowers these solutions to work together for real-time information sharing and threat response.

SUBSCRIBE

Get latest Technology news, reviews, business-related content with a deliberate emphasis on the African narrative and insightful analysis in Nigeria straight to your inbox.

More here:
Cybersecurity Company, Sophos Unveils Xstream Version of its XG Firewall to Secure Encrypted Network Traffic - Technext

Related Posts
This entry was posted in $1$s. Bookmark the permalink.