Sophos NDR 1.7 is Now Available

ProductsSophos NDR

Expand your revenue opportunities with Sophos NDR!

Aug 26 2024 By

Sophos NDR is now easier for you to SELL and for your customers to USE.

Enhanced investigation capabilities enable customers to see and stop network threats quickly and easily. The new in-product trial option makes Sophos NDR easier to test drive.

Plus, new physical appliance options provide additional billings opportunities.

You can now activate and deploy Sophos NDR via Sophos Central Partner Dashboard wizard, making it quicker and easier to add NDR to your customers’ defenses.

Why NDR is Important

However skilled an adversary is at covering their tracks, they always need to cross the network. Sophos NDR sits deep within the network, monitoring network traffic using five real-time threat detection engines to identify signs of malicious or suspicious activity.

With Sophos NDR, attackers can be identified and stopped quicker. Leveraging a combination of AI-powered machine learning, advanced analytics, and rule-based matching techniques, it identifies threats that often go undetected until it’s too late, including:

  • Threats on unprotected devices like point-of-sale systems, IoT and OT devices, and legacy operating systems
  • Rogue assets that adversaries exploit to launch attacks
  • Insider threats such as sensitive data uploads to an offsite location
  • Zero-day attacks, and more

Plus, when combined with other security telemetry, Sophos NDR enables threat analysts to paint a more complete, accurate picture of the entire attack path and progression, enabling a faster, more comprehensive response.

What’s new in v1.7

We continue to enhance Sophos NDR to further accelerate network threat detection and response. The rich graphical interface and forensic investigation tools in the new Investigation Console enable analysts to dive deeper into your network activity and pinpoint issues sooner. Use cases include:

  • Gain comprehensive visibility into all network activity over the past 30 days
  • Analyze application activity, flow risks, and communication on non-standard ports
  • Monitor network activity over time to identify suspicious patterns and behaviors
  • And much more

 

For maximum flexibility, Sophos NDR deploys as a virtual appliance on VMware or Microsoft Hyper-V, in the cloud on AWS, or on a range of certified hardware appliances. The latest version includes a refreshed certified hardware portfolio, including a new entry-level model.

To learn more about the latest enhancements, visit the Sophos NDR community forum.

Sophos NDR is available with the self-managed Sophos XDR tool and our 24/7 fully-managed Sophos MDR service. All Sophos customers can now activate a 30-day free trial directly within their Sophos Central console.

Speak to your account team to learn more. And visit the Partner Portal for Sophos NDR resources.

About the Author

Chris McCormack is a network security specialist at Sophos where he has been focused on firewall and network protection since joining Sophos in 2008. When not evangelizing Sophos network security products, Chris specializes in providing advice and insight into the latest threats and network protection technologies and strategies.