Sophos Product and Services News – May 2024

ProductsCloud OptixSophos EmailSophos EndpointSophos FirewallSophos Incident Response ServicesSophos NDR

Check out the latest news from our product team.

We share a joint mission to bridge the cybersecurity divide, enabling organizations of all sizes and means to have a clear path to superior cybersecurity outcomes.

Check out the latest Sophos products and services news below and take advantage of our most recent solution enhancements and industry awards to accelerate your own efforts.


Sophos Incident Response: NCSC Certified Incident Response (CIR) Level 2 status

This month, Sophos Incident Response has been awarded the U.K.’s National Cyber Security Centre (NCSC) Cyber Incident Response (CIR) Level 2 status by CREST. This certification is tremendous recognition of our IR expertise, affirming that Sophos expert responders can deliver vital support to organizations experiencing a major cyber incident. Learn more.

Sophos Firewall: v20 MR1

Sophos Firewall v20 MR1 is our biggest maintenance release ever, rivalling a full version upgrade in terms of new functionality. It includes new security features, true zero-touch deployment from Sophos Central, an AI administration assistant, and much more. Plus, it’s a free upgrade for all licensed Sophos Firewall users, delivering another great reason for customers to continue their Sophos protection. Get full details.

Sophos NDR support for certified hardware deployments

Customers can now deploy NDR on certified hardware to support high traffic volume environments.

Previously, Sophos NDR was limited to 1Gbs of network traffic when deployed on supported virtual appliances (VMWare ESXi, MS HyperV, and AWS AMI), posing a challenge for customers with higher traffic and/or distributed branch offices.

We’re pleased to share that a new ISO image deployment for certified hardware that supports small, medium, and large network environments is now available, accommodating up to 40Gbps and 120K connections/second. Learn more.

Sophos Portfolio: New overview video

This 6-minute video explains the Sophos product and services portfolio and our adaptive cybersecurity ecosystem. It explains what Sophos delivers and how we enable customers to enjoy superior outcomes, making it ideal for people new to Sophos and those looking to refresh their Sophos portfolio knowledge.

Sophos Endpoint: Migration API for macOS and Linux

MSPs and larger customers typically have their Sophos Endpoint-protected devices split across multiple tenants (i.e., groups) for ease of management and enhanced security. Our Sophos Endpoint Migration API enables users to move endpoints in bulk from one tenant to another, saving valuable time and effort. Initially for Windows only, we’ve recently extended it to support macOS and Linux, so even more customers and partners can benefit. Developer info.

Sophos Cloud Optix: Anomaly detection MITRE ATT&CK mapping

Sophos Cloud Optix identifies anomalous user activity in the AWS cloud control plane. Our latest enhancements make it easier for defenders to identify and investigate threats:

  • Anomalies detected from user activity now include mapping to MITRE ATT&CK tactics
  • New MITRE ATT&CK tactics chain visualization
  • Anomaly activity timeline now includes the corresponding MITRE ATT&CK tactics

Sophos Email: Geo blocking

Sometimes organizations want to bulk block emails from a particular country, for example, if they receive high volumes of spam and malicious messages from a country with which they have no business engagement. The latest feature enhancement to Sophos Email enables admins to control messages by country of origin.

Sophos MDR: PowerShell detections from Sophos AI model

PowerShell is a common IT tool that is often abused by adversaries to help execute their attacks. The challenge for defenders is distinguishing between malicious abuse and legitimate use. The new Sophos AI PowerShell detections model available within Sophos MDR analyses tens of millions of PowerShell commands run in customer environments, accelerating identification of suspicious activity and helping MDR analysts focus on what’s important.

Sales Campaigns

Partner sales campaigns are perfectly aligned with Sophos’ primary sales objectives. These campaigns offer valuable insights and go-to-market strategies, equipping you with the tools to effectively persuade your customers and prospects to choose Sophos. Our three core sales campaigns of the year are up and running, focusing on:

  • XG End of Life: Migrating remaining XG Firewall customers to our latest XGS Firewall
  • Endpoint Renewal: Renewing our existing Sophos Endpoint customer base
  • Endpoint to MDR: Extending Sophos Endpoint customers’ defenses with Sophos MDR

State of Ransomware 2024 report

Sophos provides the world’s best defenses against ransomware. Check out the fifth annual Sophos State of Ransomware report to understand the real-world impact that ransomware has on victims.

Drive demand and establish yourself as a thought leader by sharing our comprehensive ransomware report with your customers and prospects to kickstart meaningful security conversations. Access promotional materials.

Spotlight Sophos X-Ops article: Extracting data from encrypted virtual disks: six methods

Sophos X-Ops is committed to sharing their deep expertise to support the wider security community. In this article, five Sophos X-Ops experts explain various techniques and readily available tools for extracting data from an encrypted virtual disk. Read the article.



Sophos named a Leader in the IDC MarketScape: Worldwide Managed Detection and Response (MDR) 2024 Vendor Assessment 

Recognizing Sophos MDR’s market-leading capabilities, Craig Robinson, Research Vice President of Security Services, IDC, commented “With simple pricing and flexible service models, Sophos [provides] an easy-to-understand option for companies looking to strengthen their cybersecurity defenses and address complex security needs. The recent introduction of Sophos Managed Risk also demonstrates their commitment to addressing the evolving challenges of their customers in an ever-changing cybersecurity landscape.”  Learn more.

Security Vendor of the Year

At the 2024 Computing Security Excellence Awards in London this month, Sophos received the prestigious Security Vendor of the Year recognition. Learn more.