Sophos has recently introduced Sophos XDR (Extended Detection and Response) to offer additional defense capabilities to Sophos Endpoint customers, protecting them against sophisticated human-led attacks. This new solution aims to provide tools to detect and respond to suspicious activities on the Sophos-protected endpoints and the wider environment before active adversaries can impact the systems.
The Sophos XDR leverages data from both Sophos and third-party technologies, including endpoint, firewall, identity, network security, productivity, email protection, and cloud, giving users visibility across all key attack surfaces. This visibility enables users to access the necessary information and tools to investigate and neutralize threats effectively.
The recent enhancements to Sophos XDR have provided users with more reasons to upgrade from Sophos Endpoint than ever before, offering an improved experience and expanded capabilities.
The capabilities of Sophos XDR include the ability to detect suspicious activity using AI-powered detections, providing instant visibility of suspicious activity across endpoints and other key attack surfaces. The new simple SQL-less search feature allows users to hunt threats at speed, ensuring a swift response to potential threats.
Moreover, the solution enables automated case creation and prioritized detections, making it easier for users to focus on critical issues and carry out investigations effectively. The new user experience (UX) provides users with the necessary information and tools to facilitate smooth investigations, while new and improved case management tools and response actions empower users to collaborate with team members and neutralize attacks quickly.
Sophos XDR also includes powerful Endpoint Detection and Response (EDR) capabilities for security analysis and IT administrators, enabling users to ask detailed questions to investigate threats and access powerful out-of-the-box queries and a simple search tool with up to 90 days of user and application activity data.
Furthermore, Sophos XDR extends visibility beyond the endpoint, allowing users to build on their endpoint telemetry by increasing visibility and insights into evasive threats across all key attack surfaces. The solution integrates with an extensive range of third-party security tools, providing users with greater visibility of threats across all key attack surfaces in a single unified console.
Once users upgrade their Sophos Endpoint (Intercept X) subscription to Sophos XDR, they can simply assign the XDR software to their devices using the Sophos Central management console, with no additional agents to install.
Sophos XDR has been recognized by industry experts and customers, with over 40,000 XDR customers globally, establishing Sophos as a leader in extended detection and response. The solution has received industry recognition, including being named a leader in various industry evaluations and comparisons, underscoring its effectiveness in defending against active adversaries.
To learn more about how upgrading to Sophos XDR can help organizations better defend against active adversaries, interested users can speak with a Sophos adviser or contact their Sophos partner to start a 30-day free trial directly from the Sophos Central console.