Sophos Intercept X Advanced with EDR - Endpoint Detection and Response
Sophos Central

Sophos Intercept X Advanced with EDR - Endpoint Detection and Response

Patrizio - November 15, 2018

The endpoint portfolio of Sophos Central is once again being expanded with a new product. It's called Sophos Central Intercept X Advanced with EDR and you can find out if it's worth it for you in this blog post.

The Sophos Central Endpoint products

Before we get into EDR, I'd like to show you where the new product ranks at Sophos Central. Sophos has recently cleaned up some endpoint products, moved features and renamed products . Including the latest EDR product, Sophos is currently offering us the following selection:

EDR - Advanced Root Cause Analysis

As one can already deduce from the product name, EDR is an extended feature for Intercept X, which in the eyes of Sophos apparently provides too much added value to be delivered as a free update.

The term "EDR" stands for "Endpoint Detection and Response" and in a nutshell this feature is interesting for those who want to glean a deeper understanding of the cause of an attack. The feature "Root Cause Analysis" already included in Intercept X is certainly not a bad start here, but EDR goes a bit further to get an even deeper understanding of the scope and impact of an attack.

Where EDR can help

I think I'm not completely wrong with the thesis when I say that a lot of the users out there don't care at all why the Endpoint Protection or Intercept X points out that a malicious file has been discovered. The software should simply take care in the background that the attacks are prevented and that there is no damage to the system. You may see a message from time to time that a file has been blocked and moved to quarantine. But that's all you want to hear.

Usually larger companies want to know more and have an internal or external security team to analyze the blocked files or programs. It could be that an exploit prevented by Intercept X is only a sign of a much bigger attack.

Intercept X Advanced with EDR helps you detect, investigate and respond to suspicious activity that might otherwise go undetected. Find out for yourself whether it's a real threat or just a false positive.

More Information

If you are interested in this topic and would like to take a closer look at Intercept X Advanced with EDR, we have put together the right material for you here.

Would you like to see how a marketing video of Intercept X with EDR comes out when neither the people in the video nor the video producers have understood exactly what EDR is? The video is so meaningless and, in our opinion, definitely deserves first place among the worst Sophos videos. So if you don't have anything better to do right now and want to give away 2:11 minutes of your lifetime, you'll find the link to the video below:

Try Sophos Intercept X Advanced with EDR now!

If you do not yet have a Sophos Central account, you can create one here and test all features, including "Sophos Intercept X Advanced with EDR" free for 30 days.

If you already have a Sophos Central Account and the 30-day trial period has expired, you can order a license for "Sophos Intercept X Advanced with EDR" from our shop:

Send Your Feedback

Share your thoughts about this article, your private queries are always welcome and greatly appreciated.

Send Feedback
All information are confidential

On our blog we regularly publish articles on various topics related to Sophos. To make sure you don't miss any articles, you can subscribe to our newsletter, and once a month you will receive an email with a summary of all articles published in the last 30 days.

Knowledge base

Do you need help with a Sophos product? Then maybe our free knowledge base can help you. We try to document most support requests in an article so that we can help as many people as possible.