{"id":24405,"date":"2024-04-29T05:20:57","date_gmt":"2024-04-29T13:20:57","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2024\/04\/29\/news-18135\/"},"modified":"2024-04-29T05:20:57","modified_gmt":"2024-04-29T13:20:57","slug":"news-18135","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2024\/04\/29\/news-18135\/","title":{"rendered":"Sophos Endpoint: Adaptive Attack Protection Gets Even Better"},"content":{"rendered":"<p><strong>Credit to Author: rajansanhotra| Date: Mon, 29 Apr 2024 11:04:40 +0000<\/strong><\/p>\n<div class=\"entry-content lg:prose-lg mx-auto prose max-w-4xl\">\n<p><a href=\"https:\/\/news.sophos.com\/en-us\/2023\/09\/26\/context-sensitive-defenses-in-sophos-endpoint\/\">Adaptive Attack Protection<\/a> is a powerful and unique differentiator in <a href=\"https:\/\/www.sophos.com\/en-us\/products\/endpoint-antivirus\">Sophos Endpoint<\/a>. It dynamically enables heightened defenses when a \u201chands-on-keyboard\u201d attack is detected. In this elevated mode of protection, actions that are usually benign but commonly abused by attackers are blocked outright by Sophos Endpoint &#8211; dramatically reducing the likelihood of the attack&#8217;s success and giving you more time to neutralize the threat.<\/p>\n<p><a href=\"https:\/\/vimeo.com\/813614946\"><strong>Watch this 2-minute video<\/strong><\/a><strong> for an overview of Sophos Adaptive Attack Protection.<\/strong><strong><br \/> <\/strong><\/p>\n<p>As attackers continue to innovate in their approaches, we have extended this unique protection with additional capabilities that further protect Sophos Endpoint customers against active adversaries.<\/p>\n<h2><strong>Greater Protection, More Control, Increased Visibility<\/strong><\/h2>\n<p>This Sophos-exclusive protection capability is now even stronger. All Sophos Endpoint customers <strong>now benefit from <\/strong>a number of significant enhancements:<\/p>\n<ul>\n<li><strong>Greater protection. <\/strong>Customers now have the option to apply specific Adaptive Attack Protection blocking rules persistently via new policy settings in their Sophos Central cloud-based management console.<\/li>\n<li><strong>More control.<\/strong> Customers can now manually activate (and deactivate) Adaptive Attack Protection on a device to apply more aggressive protection while investigating suspicious activity &#8211; ideal for scenarios where fully isolating the device from the network may cause significant operational disruption to the organization. You can also extend the time that Adaptive Attack Protection is activated on a device to give more time to complete an investigation.<\/li>\n<li><strong>Increased visibility.<\/strong> New Adaptive Attack Protection events and alerts notify you when a device is under attack and urge responders to take action to neutralize the threat.<\/li>\n<\/ul>\n<p><em>New manual controls for Adaptive Attack Protection.<\/em><\/p>\n<p><a href=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture1.png\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-954802 alignleft\" src=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture1.png?w=300\" alt=\"\" width=\"512\" height=\"413\" srcset=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture1.png 1503w, https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture1.png?resize=300,242 300w, https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture1.png?resize=768,620 768w, https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture1.png?resize=1024,826 1024w\" sizes=\"auto, (max-width: 512px) 100vw, 512px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p style=\"text-align: left\"><em>New alerts<\/em> <em>notify customers when Adaptive Attack Protection is activated on a device.<\/em><\/p>\n<p><a href=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture2.png\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-954803 alignleft\" src=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture2.png?w=300\" alt=\"\" width=\"793\" height=\"275\" srcset=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture2.png 3289w, https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture2.png?resize=300,104 300w, https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture2.png?resize=768,266 768w, https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture2.png?resize=1024,355 1024w, https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture2.png?resize=1536,532 1536w, https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture2.png?resize=2048,709 2048w\" sizes=\"auto, (max-width: 793px) 100vw, 793px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<h2 style=\"text-align: left\"><strong>New Safe Mode Protection<\/strong><\/h2>\n<p>When adversaries fail to break through runtime protection layers on an endpoint, they often attempt to restart the device into Safe Mode, where security software is not present or minimal. Sophos Endpoint now protects against adversary abuse of Safe Mode with two new capabilities:<\/p>\n<ul>\n<li><strong>Block safe mode abuse:<\/strong> A new Adaptive Attack Protection persistent policy rule is now available that prevents adversaries from programmatically restarting devices into Safe Mode.<\/li>\n<li><strong>Enable protection in safe mode:<\/strong> Sophos Endpoint protection capabilities, including our unrivaled CryptoGuard anti-ransomware technology and AI-powered malware protection, can now be enabled on devices running in Safe Mode.<\/li>\n<\/ul>\n<p><em>New safe mode protection policy settings.<\/em><br \/> <a href=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture3.png\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-954804 alignleft\" src=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture3.png?w=300\" alt=\"\" width=\"794\" height=\"329\" srcset=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture3.png 1092w, https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture3.png?resize=300,124 300w, https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture3.png?resize=768,319 768w, https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/Picture3.png?resize=1024,425 1024w\" sizes=\"auto, (max-width: 794px) 100vw, 794px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>Adaptive Attack Protection is available to all Sophos Endpoint customers today.<\/p>\n<p>To learn more about\u00a0<a href=\"https:\/\/www.sophos.com\/en-us\/products\/endpoint-antivirus\">Sophos Endpoint<\/a>\u00a0and how it can help your organization better defend against today\u2019s advanced attacks,\u00a0<a href=\"https:\/\/www.sophos.com\/en-us\/products\/contact-request\">speak with a Sophos adviser<\/a>\u00a0or your Sophos partner today.<\/p>\n<p>&nbsp;<\/p>\n<\/p><\/div>\n<p><a href=\"https:\/\/news.sophos.com\/en-us\/2024\/04\/29\/sophos-endpoint-adaptive-attack-protection-gets-even-better\/\" target=\"bwo\" >http:\/\/feeds.feedburner.com\/sophos\/dgdY<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><img decoding=\"async\" src=\"https:\/\/news.sophos.com\/wp-content\/uploads\/2024\/04\/AAP.png\"\/><\/p>\n<p><strong>Credit to Author: rajansanhotra| Date: Mon, 29 Apr 2024 11:04:40 +0000<\/strong><\/p>\n<p>Sophos continues to deliver the strongest endpoint protection in the industry.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10378,10377],"tags":[11179,10405,24562,19056],"class_list":["post-24405","post","type-post","status-publish","format-standard","hentry","category-security","category-sophos","tag-endpoint","tag-intercept-x","tag-products-services","tag-sophos-endpoint"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/24405","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=24405"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/24405\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=24405"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=24405"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=24405"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}