As we continue to enhance our existing solutions, we’re also expanding our portfolio with powerful new offerings that bring together the best of Sophos and Secureworks. Take a look at the solution updates below to learn more.
Jump to a section:
- Releases: Latest product, service and platform enhancements
- Recognition: Accolades from G2, SE Labs and AV-Test
- Resources: New cyber insurance resources and AI Assistant in XDR
RELEASES
Sophos MSP Elevate program and Sophos MDR Bundle for MSP
Our new MSP Elevate program is designed to accelerate MSP growth and profitability. It enables MSPs to expand their business with high-value, differentiated cybersecurity offerings that elevate their customers’ cyber defenses and rewards growth with additional investment to fuel further success. Partners in the program gain access to:
- An exclusive MDR Bundle for MSP that brings together Sophos MDR Complete, 1 year data retention, Sophos Network Detection and Response (NDR), and all Sophos integration packs in a single, highly competitive SKU.
- 40% discount on Sophos Network-in-a-Box bundles that combine carefully selected hardware and software to meet common security and connectivity needs, all while offering flexibility to tailor solutions to customers’ exact requirements. Learn more.
- Free architect-level training on Sophos Endpoint and Sophos Firewall, enabling partners to deepen their solution knowledge
- And more to come!
Explore Sophos MSP Elevate today and get started! Learn more.
Expanded Sophos response actions for MDR customers
We’ve expanded the risk-reducing response actions that our MDR customers enjoy today with new capabilities:
- Sophos MDR customers can now leverage new Microsoft 365 response capabilities that allow our MDR operators to execute key response actions directly using Microsoft APIs – including blocking or enabling user sign-ins, revoking active sessions, and disabling suspicious inbox rules. Learn more.
- Taegis MDR customers benefit from recent improvements in the Taegis automation system that give them more options for automated response actions and easier set-up. Customers see faster mean-time-to-resolve (MTTR), greater satisfaction, and better protection.
Taegis XDR and Sophos Endpoint integration preview
Taegis XDR and Sophos Endpoint bring together Sophos’ powerful threat protection capabilities with Taegis’ advanced analyst tools and insights. Together they deliver proactive ransomware protection, comprehensive detection and response, and robust SIEM capabilities all via a single unified experience. Existing and new Taegis customers will be able to take advantage of this integration from next quarter – for an early look, check out the video below.
Sophos Firewall v21.5: Now Available
This update introduces powerful industry-first enhancements and top-requested features. It also delivers tremendous competitive advantages including Active Threat Response and built-in NDR Essentials – both accelerating threat detection and response. With Entra ID (Azure AD) SSO for VPN, deeper DNS protection integration, NAT64 support, flexible licensing and much more, this release brings meaningful advancements to our next-gen firewall capabilities. Learn more and watch the highlights video below.
Sophos Partner Dashboard and Enterprise Dashboard enhancements
Customers and partners that manage multiple environments benefit from a major dashboard upgrade. The new single and multi-estate (enterprise customer) or single and multi-tenant (partner) dashboards simplify and accelerate day-to-day management while customizable alerts make it easy to see critical information fast. Learn more about the Partner Dashboard and Enterprise Customer Dashboard or watch our video for MSPs.
MDR Dashboard/Proof of Value enhancements
It’s critical that every customer understands the value of their MDR service, even when they don’t have an incident. To that end, we have recently improved our Sophos MDR dashboard capabilities with new service insights that give customers deeper visibility into the work of the MDR team on their behalf.
For Taegis MDR customers, we’ve recently launched new customizable dashboards functionality, including turn-key widgets that map threats to the MITRE ATT&CK framework and the ability to build new widgets using the powerful Taegis search query language.
Sophos Managed Risk: Internal vulnerability management and enhanced reporting
Sophos Managed Risk already provides customers with invaluable insights into their external attack surface. The service now includes internal attack surface management (IASM). Powered by Tenable Nessus vulnerability scanning technology, the new capabilities help organizations detect, assess, and mitigate risks inside their networks before attackers can exploit them. Plus, more good news – all customers already enjoy new HTML reports that enable them to filter based on risk factors or assets. Learn more.
Hourly billing for Emergency Incident Response
We converged Sophos Rapid Response and Secureworks Emergency Incident Response in a new unified service offering based on an hourly billing model. The new offering makes it easier for non-MDR customers facing active incidents to quickly engage our expert threat response analysts. Learn more.
Introducing Sophos Identity Detection and Response (ITDR)
Sophos ITDR continuously monitors customers’ environments for identity risks and misconfigurations while providing dark web intelligence on compromised credentials. It uncovers hidden identity attack surfaces and leaked credentials from within the dark web.
Taegis IDR is currently available as an add-on for Taegis XDR and Taegis MDR customers. Later this year, we plan to launch Sophos ITDR, fully integrated with Sophos Central, as an add-on for all Sophos XDR and Sophos MDR customers.
Additional solution enhancements
- New integrations for Sophos MDR and Sophos XDR customers – we’re expanding our integrations with Rubrik Security Cloud and Trend Vision One Endpoint Security already live and EntraID coming soon. Access integrations.
- Expanded management regions for Sophos DNS Protection – Sophos Firewall customers with Sophos Central accounts in Australia, Brazil, India, Japan, and Canada can now easily deploy and take advantage of Sophos DNS Protection. Learn more.
- Taegis ManagedXDR is now Taegis MDR – the new name better aligns our portfolio with the broader MDR market.
- Sophos Endpoint: Block communication with compromised devices. To help stop threats from spreading to or between devices, customers can now prevent endpoints from communicating with compromised IP addresses that they specify. Learn more.
- Sophos Workload Protection: Enhanced control of event journaling on Linux devices. We store event journals on endpoints and servers to record activity for Sophos XDR ‘Live Discover’ queries in the Threat Analysis Center. Customers can now configure the maximum disk space and the maximum journal size for Linux servers, using existing Sophos Central configuration options. Learn more.
- Switch Stacking in Sophos Central – EAP now available – We’re streamlining day-to-day network management by introducing Switch Stacking in Sophos Central. This new feature allows admins to create and manage virtual switch stacks, all within a centralized, intuitive interface. The EAP for this capability is now available—ready for promotion. Learn more.
Threat thought leadership
Sophos X-Ops has recently released two major annual reports that deliver deep insights into the reality of cyberthreats today. Widely recognized across the industry, they are must-read for anyone wanting to understand the threat landscape we face:
- The Sophos Annual Threat Report: Cybercrime on Main Street 2025 – this year’s report reveals ransomware still reigns as the top threat, with outdated and misconfigured network devices making attackers’ jobs far too easy.
- It takes two: The 2025 Sophos Active Adversary Report – Now in its fifth year, our annual deep dive into adversary behaviors delivers fresh insights, practical guidance, and strategic advice for practitioners, business leaders, and tech decision-makers.
RECOGNITION
- Gartner: Sophos has been named a Customers’ Choice vendor in Gartner’s Voice of the Customer reports for both Endpoint Protection Platforms and Extended Detection and Response.
- GigaOm: Sophos Firewall was recognized as a Leader in GigaOm’s Enterprise Firewall evaluation.
- G2: Sophos is – once again – the only vendor named Leader across Firewall, MDR, XDR and EDR categories in the G2 Spring 2025 Reports. Based on user feedback, Sophos was also ranked the #1 solution across 53 global reports.
- AV-TEST: Intercept X earned a Top Product award in the latest AV-Test Business Windows test, with perfect 100% protection and detection rates.
RESOURCES
Quantifying the impact of cyber controls on cyber insurance claims
Sophos has released groundbreaking research that, for the first time, quantifies the impact of cyber controls on insurance claims—revealing that organizations using MDR services file 97.5% fewer claims than those relying solely on endpoint protection.
Sophos AI Assistant web page
We’ve launched a dedicated web page for the Sophos AI Assistant feature in Sophos XDR. This new page offers a comprehensive overview of the feature, along with nine short videos that demonstrate real-world use cases in action.
