{"id":23211,"date":"2023-10-30T08:38:55","date_gmt":"2023-10-30T16:38:55","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2023\/10\/30\/news-16941\/"},"modified":"2023-10-30T08:38:55","modified_gmt":"2023-10-30T16:38:55","slug":"news-16941","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2023\/10\/30\/news-16941\/","title":{"rendered":"Sophos Firewall v20: Active Threat Response"},"content":{"rendered":"<p><strong>Credit to Author: Chris McCormack| Date: Wed, 25 Oct 2023 11:00:24 +0000<\/strong><\/p>\n<div class=\"entry-content lg:prose-lg mx-auto prose max-w-4xl\">\n<p>With Sophos Firewall v20 now available for <a href=\"https:\/\/community.sophos.com\/sophos-xg-firewall\/sfos-v20-early-access-program\/b\/announcements\/posts\/sophos-firewall-v20-early-access-announcement\">early access<\/a>, we will be covering some of the top new features every week leading up to launch.<\/p>\n<p>In last week\u2019s article, we covered the new <a href=\"https:\/\/news.sophos.com\/en-us\/2023\/10\/17\/sophos-firewall-v20-azure-ad-enhancements\/\"><u>authentication and Azure AD enhancements<\/u><\/a> in Sophos Firewall v20. This week, we\u2019ll have a look at one of the flagship features of this release: Active Threat Response.<\/p>\n<p>Active Threat Response dramatically improves response time.\u00a0 It essentially extends Synchronized Security to Sophos MDR and XDR analysts \u2013 enabling an instant and automated response to active adversaries and threats.<\/p>\n<h2>How it works<\/h2>\n<p>If an analyst identifies a new threat communicating out to a command and control server, they can push that threat intel to the firewall from Sophos Central via a new threat feed API. The firewall will then start coordinating a defense immediately and automatically, without the need for manual intervention or new firewall rules.<\/p>\n<p>Any host attempting to communicate with the blocked threat will be flagged with a RED Security Heartbeat and be isolated accordingly, preventing any lateral movement and stopping the threat dead in its tracks.\u00a0 It works equally well regardless of what initially identifies the threat: the analyst, an endpoint, the firewall, or NDR.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-951902 size-full\" src=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2023\/10\/FW-ATR.png\" alt=\"\" width=\"1430\" height=\"763\" srcset=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2023\/10\/FW-ATR.png 1430w, https:\/\/news.sophos.com\/wp-content\/uploads\/2023\/10\/FW-ATR.png?resize=300,160 300w, https:\/\/news.sophos.com\/wp-content\/uploads\/2023\/10\/FW-ATR.png?resize=768,410 768w, https:\/\/news.sophos.com\/wp-content\/uploads\/2023\/10\/FW-ATR.png?resize=1024,546 1024w\" sizes=\"auto, (max-width: 1430px) 100vw, 1430px\" \/><\/p>\n<p>Check out this video for a comprehensive overview of this exciting new capability\u2026<\/p>\n<p><a href=\"https:\/\/techvids.sophos.com\/watch\/kysi9dTRDCRHuPFgPi2AEr\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-951903 size-full\" src=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2023\/10\/ATR-video.png\" alt=\"\" width=\"1208\" height=\"678\" srcset=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2023\/10\/ATR-video.png 1208w, https:\/\/news.sophos.com\/wp-content\/uploads\/2023\/10\/ATR-video.png?resize=300,168 300w, https:\/\/news.sophos.com\/wp-content\/uploads\/2023\/10\/ATR-video.png?resize=768,431 768w, https:\/\/news.sophos.com\/wp-content\/uploads\/2023\/10\/ATR-video.png?resize=1024,575 1024w\" sizes=\"auto, (max-width: 1208px) 100vw, 1208px\" \/><\/a><\/p>\n<p>This new automated response feature is a game changer for Sophos MDR and XDR customers who use Sophos Firewall.<\/p>\n<h2>Check out all the new features in v20<\/h2>\n<h4><\/h4>\n<p>Sophos Firewall v20 includes a ton of great new capabilities. Check out the full list in this <a href=\"https:\/\/assets.sophos.com\/X24WTUEQ\/at\/w8vnx57qw4vhs997fbknp2j\/sophos-firewall-key-new-features.pdf\">What\u2019s New PDF download<\/a>.<\/p>\n<h2>Early access program<\/h2>\n<p>Check out all the great new features in SFOS v20 today and help us make this release the best it can be by participating in the early access program. Visit the SFOS v20 <a href=\"https:\/\/sophosfirewallv20earlyaccess.splashthat.com\/\">EAP registration page<\/a> to get started.<\/p>\n<p>The Sophos Firewall OS v20 EAP release is a fully supported upgrade from any previously supported firmware version, including the most recent v19.5 MR3 release.<\/p>\n<p>Once you\u2019re up and running, please provide feedback through your Sophos Firewall\u2019s feedback mechanism (top right of every screen on your Firewall). Also visit our <a href=\"https:\/\/community.sophos.com\/sophos-xg-firewall\/subgrouplist\">EAP community forums<\/a> to share your experiences with others.<\/p>\n<p>Note that the early access program is ending soon \u2013 we expect to announce general availability shortly! A special thanks to all who have been participating in the program.<\/p>\n<\/p><\/div>\n<p><a href=\"https:\/\/news.sophos.com\/en-us\/2023\/10\/25\/sophos-firewall-v20-active-threat-response\/\" target=\"bwo\" >http:\/\/feeds.feedburner.com\/sophos\/dgdY<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><img decoding=\"async\" src=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2023\/10\/sophos-firewall-7.png\"\/><\/p>\n<p><strong>Credit to Author: Chris McCormack| Date: Wed, 25 Oct 2023 11:00:24 +0000<\/strong><\/p>\n<p>Start taking advantage of all the great new features in SFOS v20 today.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10378,10377],"tags":[30192,10384,24562,30193],"class_list":["post-23211","post","type-post","status-publish","format-standard","hentry","category-security","category-sophos","tag-firewall-v20","tag-network","tag-products-services","tag-v20"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/23211","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=23211"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/23211\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=23211"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=23211"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=23211"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}