Sophos BoostsServer Protection Products with Next-Gen Anti-RansomwareCryptoGuardTechnology

Sophos (LSE: SOPH), a global leader in network and endpoint security, today announced, that its next-generationanti-ransomware CryptoGuardtechnology is nowavailable with its SophosServer Protectionproducts. With this optimization, Sophos Server Protection now hassignature-less detection capabilities to combat ransomware – similar to Sophos Intercept X for endpoints. In September 2016, Sophos launchedSophosIntercept XwithCryptoGuard, which stop the spontaneous encryption of data by ransomware within seconds of detection.

By addingCryptoGuardto server security, Sophos is closing a critical gap by preventing ransomware attacksthat could come in through rogue, guest or remote access users or other weaknesses in a company’s network.For example, if a company allows bring-your-own-laptopson the network, remote access for employees or is victimized byan insider cyber threat, servers become highly susceptible to ransomware.Additionally, network shares on servers are high-value targetsas they contain proprietary financials, personally identifiable information and other key data, and should be protected as such.

“Servers are the lifeblood of any organization as they contain majority of business-critical data and intellectual property, and run business critical applications which makes them so appealing for attackers with financial or disruption driven goals. It is therefore, very important for any business to keep their servers secure, available, and performing at optimum levels,” said sunil sharma, vice president – sales, India & SAARC at sophos.

“Servers are a frequently attacked asset, and yet, many are not being protected nor are businesses creating essential back-up incase their data is compromised. Protection integrating server application with advanced anti-ransomware capabilities is vital to step up effective protection. Sophos has optimized its Server Protection products with CryptoGuard, adding another layer of next-gen protection to tackle harmful cyber-attacks.” he further added.

Sophos has also expandedSynchronized Security by adding Sophos Security Heartbeat capabilities to Sophos Central Server Protection Advanced. By adding Security Heartbeat to servers,an IT administratorcan nowleverage Sophos XG Firewall to automatically isolateinfected servers and endpoints toidentifyand respond to the source of compromisesfaster. Sophos Central Server Protection also includes Malicious Traffic Detection, which monitors for traffic to Command and Control servers and application whitelisting with one-click Server Lockdown, which secures servers in a safe state and prevents unauthorized applications from running.

Sophos Server Protection products with CryptoGuard capabilities now includes Central Server Protection Advanced on the cloud-based Sophos Central platform and Sophos Server Protection Enterprise, which is managed with a traditional on-premise console.

Partner and Customer Feedback on Sophos Server Protection

“Protection for servers isespecially critical for our customers who allow remote desktop connections or have weak desktop credentials, which is a known vulnerability for ransomware attacks. Even our customerswhohave put every safeguard in placecould still havean exposed server,due to that one rogue laptop someoneconnects into the network. Just one clickon a tainted email could encrypt every file with ransomware. We’ve seen this happen with a customer, so from a technical standpoint, it’s exciting to have anti-ransomware capabilities at the server level,” said Dan Russell, chief information officer, Pine Cove Consulting, a Sophos channel partner based in Bozeman, Montana. “Sophos also designed its server protection to be ‘lightweight.’ Many of our customers are educational institutions with older computers, so having an anti-ransomware capability that doesn’t impact server performance – no matter how old or new – is a must. The evolution of ransomware is a reality our customers need to deal with right now.We arefocused on selling Sophos Central Server Protection Advanced and Sophos Intercept X to guard against ransomware threats.”

“At Lifeways, our userslog into servers to accesstheir email and websites, so we definitely need a solution that prevents ransomware.Already, we useSophos Central Server Protection Advanced forapproximately 100 servers. We also have Sophos Intercept X running on roughly 600 endpoints or about 50 percent our estate so far. With Intercept X’s root cause analysis feature, we have a holistic view of breaches and the ability to investigate every node that’s been infected. We can also reverse ransomware attacks on the endpoints, which is huge,” said Andy Pitcher, group infrastructure manager at Lifeways, a Sophos customer in London, England. “Lifeways has been hit by ransomware in the pastand it was not fun. The attack came in through an end point and hit the serveras well. We were able to restore quickly, but our business did come to a halt for a while.Sophos Server Protectionand Sophos Intercept X are critical defenses for us, and we plan to use them throughout our entire estate.”