Connect with us

News

Sophos launches Sophos intercept X for server to block cyber attacker

Published

on

NEW DELHI: Sophos has announced Sophos Intercept X for Server, next-generation server protection with predictive deep learning technology that provides constantly evolving security against cyber threats.

Sophos’ deep learning neural networks are trained on hundreds of millions of samples to look for suspicious attributes of malicious code and prevent never-before-seen malware attacks.

SophosLabs research indicates that 75 percent of malware found in an organization is unique to that organization, indicating the majority of malware is previously unknown.

A recent Sophos survey reveals that two-thirds of IT managers worldwide don’t understand what anti-exploit technology is, leaving their organizations vulnerable to data breaches. Once inside a network, cybercriminals can use persistent and lateral moves to target and takeover servers to access the high-value data stored there, such as personally-identifiable information (PII), banking, tax, payroll and other financial records, proprietary intellectual properties, shared applications – all of which can be sold on the Dark Web or used for other types of attacks and monetary gain.

Servers can also suffer collateral damage from ransomware and run-of-the-mill cyberattacks. Attacks reaching servers can be more devastating to a business than attacks on endpoints, due to the critical data they hold.

Sophos demonstrates hacking and advanced exploit techniques that cybercriminals use in this Video of How Active Adversaries Attack in Real-Time (also found on Sophos.com/Servers).

“Servers are the bullseye for cybercriminals because they store valuable information and have a broader, system-wide organizational purpose than individual endpoints. An entire company could get potentially wiped out if cybercriminals infiltrate its servers with ransomware or malicious code, or exploit vulnerabilities to gain access. Once breached, attackers can get deep in the network and have the ability to do some serious damage, as well as exfiltrate data,” said Sunil Sharma, Managing Director Sales for Sophos India & SAARC.

“Cybercriminals use stolen information for their own spear-phishing campaigns and crime sprees, or they could resell it at a premium price on the Dark Web or to a private network of buyers. Sophos threat experts have seen access to compromised servers for sale on the Dark Web, in addition to the poached data itself – a bonus for cybercriminals, but a double whammy for businesses,” he added.

Attackers also use breached servers as proxies to redirect traffic to malicious websites and are now installing cryptominers on server farms and cloud accounts, so they can generate crypto-currencies by stealing a company’s CPU, RAM, electricity, and other resources. The motives of cybercriminals based on how servers are utilized, what’s stored there and what can be leveraged for multiple crimes underscores the need for predictive, server-designed security with advanced anti-exploit technology that helps protect even unpatched systems.

“According to The Dirty Secrets of Network Firewalls research conducted by Sophos, 89 percent IT managers in India opined that stopping malware threats have become harder over the last year and only endpoint or firewall is not sufficient to protect our data. It’s time we realize that servers are critical infrastructure, but they are often overlooked in the endpoint strategy of many companies,” said Sharma.

“It’s not enough to simply install traditional endpoint protection on servers because they demand additional tools and features, such as cloud workload discovery, including Microsoft Azure and Amazon Web Services, and protection to mitigate risk from rogue or forgotten IT assets. The survey also said that 65% Indian respondents completely agree that their current defenses are not sufficient to block cyber threats – be it network, endpoint or server. Server-specific protection is necessary to a successful layered security strategy to reduce the risk of a data breach. Combined with Sophos’ Synchronized Security intelligence sharing and easy management from our Sophos Central dashboard, Intercept X for Server is a powerful addition that helps defend businesses from becoming the next victim,” he added.

The need for server protection exists in organizations of all sizes, with smaller businesses being potentially at more risk than larger, better resourced enterprises as Frank Dickson, research vice president, Security Products with IDC commented, “The small- and mid-sized markets (SMBs) face challenges for server protection as they need the same level of protection as their enterprise counterparts, yet protection must be in an extremely easy to use offering,”

“Additionally, sadly, SMBs are too often tempted to use under powered, inappropriate PC endpoint offerings to protect servers as a way to save cost, forcing SMB server security vendors to provide compelling, affordable offerings that are also appropriate for a smaller or understaffed IT department,” Dickson added

Regarding Sophos’ approach directly, Dickson continued, “Sophos addresses the ease-of-use factor by integrating their products on Sophos Central, so there’s one dashboard for Partners and customers to manage each security layer regardless of being on premise or in the cloud. The new Intercept X for Server significantly advances server protection with deep learning, anti-exploit and other key technology elements. The anti-exploit technology has a client right on the server, a necessary requirement based on the manner in which hackers leverage server vulnerabilities to breach systems. Given the readily available and inexpensive exploit kits for sale on the Dark Web, even cybercriminals with little expertise can launch powerful attacks, making sophisticated, server specific protection a fundamental requirement.”

“Sophos understands that servers need their own set of security criteria, like the lockdown feature in the current server solution, and the new ability to discover cloud workloads. Many of Riverlite’s clients, companies with under-staffed IT personnel, require us to keep cloud deployments secure and free from disruption,” said Simon Barnes, principal consultant at Riverlite in St. Neots, Cambridgeshire, UK.

“Having assets in the cloud or migrating and using public clouds can be daunting to any business. It’s important that MSPs have the right security in place to protect these ‘invisible’ servers, which are easily forgotten from an overall security strategy. This type of exposure weakens a company’s security posture. If any unprotected server is attacked it can wreak havoc on an entire business. We’re looking forward to upgrading and adding Intercept X for Server to our customers’ security portfolios,” added Barnes.

Syndesi is a Managed Service Provider (MSP) with particular interest in the unique cyber security challenges faced by the education sector, including data theft, disruption of operations and compromised technology assets. “For attackers, K-12 schools are a particularly attractive target because they store and handle the personal data of students, parents and staff. Many school districts are vulnerable due to budgetary constraints or limited IT resources, making them an easy target,” said Paul Gibbs, vice president of Syndesi Solutions, based in Athens, Alabama.

“An integrated, layered security system that stops ransomware, malware and data theft is paramount. We can now add Intercept X for Server with deep learning technology and Synchronized Security to strengthen the protection of sensitive assets stored on school servers and at other customer sites. We’ve already seen situations where Sophos Intercept X has blocked ransomware on endpoints almost immediately after its first appearance. If servers are hit with ransomware or malware, it’s devastating, so we’re excited for this quick response and the synchronized intelligence-sharing at the server layer as well,” added Gibbs.

Sophos Intercept X for Server is available from registered Sophos partners worldwide. Additional information can be found on Sophos.com.

Continue Reading
Advertisement
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

News

Cyber crime threat to India’s progress, security: Pramod Sawant

Published

on

PANAJI: Goa Chief Minister Pramod Sawant on Friday said cyber crime is a threat to India’s progress and security and cyber warriors need to be created to combat the menace.

Sawant was speaking at the International Conference on Information Security, Privacy and Digital Forensics (ICISPD 2022) at BITS Pilani campus in Vasco city, 35 km from here.

The chief minister said the importance of comprehensively addressing social media privacy issues cannot be underestimated and the challenge calls for skilled experts.

Cybercrime is a threat to the progress and security of our nation. The need of the hour is to create cyber warriors to combat cyber crime, he said.

Sawant stressed on the need for awareness, knowledge and skills about the emerging trends in cybercrimes and training in latest technologies of cyber security and computer forensics.

As per data from the National Crime Records Bureau, a total of 52,974 cases of cyber crime were registered, showing an increase of 5.9 per cent in registration since 2020, he said.

The crime rate in this category had increased from 3.7 per cent in 2020 to 3.9 per cent in 2021, he added.

In 2021, 60.8 per cent of cyber crime cases were of fraud, 8.6 per cent of sexual exploitation and 5.4 per cent of extortion, Sawant said.

He further said that two of the greatest inventions of the 20th century, the computer and the internet have changed the world.

It is interesting that children born at the start of this millennium can’t even imagine a world without internet connectivity and mobile devices, he said.

The positive side of the internet and related technologies became clear during the COVID-19 pandemic, the chief minister said.

When self-isolation and social distancing were essential to control the outbreak, internet helped people remain connected, make payments, buy essentials, and most importantly, do their work, Sawant said.

Source: Press Trust of India

Continue Reading

News

Tech Mahindra Inks MoU with Digital Economy Promotion Agency

Published

on

NEW DELHI: Tech Mahindra, a leading provider of digital transformation, consulting, and business re-engineering services and solutions, and Digital Economy Promotion Agency (depa), a government agency established under the Ministry of Digital Economy and Society of Thailand to promote development of digital industry and innovation and ascertain nationwide digital technology adoption in order to achieve economic, social, cultural, and security benefits, have signed a Memorandum of Understanding (MoU) to accelerate digital transformation in Thailand.

As a part of the partnership, both organizations will co-develop innovative digital solutions and execute commercially viable projects and use cases for enterprises in areas of IoT, AI, 5G, Analytics, Blockchain, and Metaverse for various industries including Smart Cities, Telecom, among others.

Rajesh Chandiramani, Business Head, Communications-Media-Entertainment for EMEA and APJI Markets, Tech Mahindra, said, “We started our Thailand operations in 2004, and today it has become one of the most strategic and growth markets for us. Our partnership with depa will unlock immense potential for us to build, develop, and market innovative solutions for our customers in Thailand and support them in their digital transformation journey. This partnership is a major step forward in strengthening the industrial competitiveness between Thailand and India. We will also work towards diversifying the talent pool in the region through various skilling and upskilling initiatives on multiple technologies like NFT, Blockchain, Metaverse, AI, Analytics, IoT, 5G, Machine Learning, Quantum Computing, and Cloud.”

Digital Economy Promotion Agency (depa) was established under the Digital Development for Economy and Society Act promulgated on 23 January 2017. The agency aims to support and promote the development of digital industry and innovation, support and promote digital technology adoption, which benefits the national economy, society, culture, and security according to Article 34 of the Act.

Dr Passakon Prathombutr, Senior Executive Vice President of Digital Economy Promotion Agency, said, “Thailand aims to become ASEAN’s digital hub, for which a digital workforce is vital. This partnership with Tech Mahindra will empower our talent development in key fields such as AI, Blockchain, and the Metaverse. Depa is building Thailand Digital Valley (TDV), a state-of-the-art digital innovation ecosystem in the Eastern Economic Corridor (EEC). TDV will become the digital and innovation hub for the entire region. Hence, this collaboration is strategic to the digital economy and society.”

This partnership is in line with Tech Mahindra’s NXT.NOW™ framework, which aims to enhance ‘Human Centric Experience’, and focuses on investing in emerging technologies and solutions that enable digital transformation and meet the evolving needs of the customer.

Continue Reading

News

Naveen Patnaik inaugurates Happiest Minds Development Centre at Bhubaneswar

Published

on

NEW DELHI: Happiest Minds Technologies Limited, a ‘Born Digital. Born Agile’, Mindful IT Company, announced the inauguration of a new Development Centre at Fortune Towers (5th Floor) in Bhubaneswar, taking forward its long-term investment plans for further expansion in the state in alignment with the Make in Odisha focus of the state government.

Under the ease of business initiative, the Odisha state government’s State Level Single Window Clearance Authority (SLSWCA) granted approval to Happiest Minds to set up a software development centre at Fortune Towers located in Bhubaneswar. Happiest Minds has earmarked Rs. 265 crore investment towards this initiative.

Naveen Patnaik, Honourable Chief Minister of Odisha, said, “Odisha has been taking giant strides in IT sector in recent years. The growth momentum is accelerating in IT space with growing confidence of IT companies on Odisha as an investment destination. Odisha is now fast emerging as a technology resource hub of India creating jobs for our youth.”

Ashok Soota, Executive Chairman, Happiest Minds Technologies said, “We are delighted to start the operation of our new development centre at Bhubaneswar. At Happiest Minds, we have always embraced our responsibility to create a mindful impact on our communities, and we are grateful to the Hon’ble Chief Minister Shri Naveen Patnaik and the state government officials for their support in establishing this centre. We praise the new IT policy of the state and are optimistic that it will become one of the most preferred destinations for skilled talent, promoting greater employment opportunities for the youth.”

Venkatraman Narayanan, MD & CFO, Happiest Minds Technologies said, “The rise of Bhubaneswar as a destination of choice for businesses is on an ever-rising curve. This is the basis of the industry-supporting initiatives of the state government, duly complemented by the burgeoning talent pool available in the city and nearby regions. Aligned with the ethos of Happiest Minds, the new development centre (Smiles 7) will help us meet evolving customer needs, accelerating our growth and the overall development of the state.”

Founded in 2011, Happiest Minds has consistently gained recognition as among the best places to work in India and Asia. The company has won the Golden Peacock Award for Excellence in Corporate Governance 2022. The company recently acquired additional space to expand its presence in Bengaluru and extended its development facilities in Noida.

Continue Reading

Trending