Sophos Sandstorm - Cloud sandbox against zero-day malware and APTs

Sophos Sandstorm - Using Sandboxing Against Zero-Day Malware and APTs

16. FEBRUARY 2016

Sophos is one of the leading companies in the fight against malware. Traditional malware protection remains indispensable as the first line of defence. However, your company needs additional tools to reliably repel targeted malware and zero-day threats. At the same time, you probably do not want to introduce yet another isolated point solution that adds further complexity to your network.

In this article we introduce Sophos Sandstorm, a new product from Sophos that has been available since 1 December 2015.

What is Sophos Sandstorm?

Sophos Sandstorm is a solution for defending against Advanced Persistent Threats (APT) and zero-day malware. Using powerful, cloud-based next-generation sandbox technology, Sophos Sandstorm enhances existing security products by rapidly and reliably detecting, blocking and responding to evasive malware that other solutions fail to identify.

That may all sound very technical, but in short, Sophos Sandstorm is an additional component to your existing security protection that enables even more proactive defence against threats.

How Sophos Sandstorm outperforms the competition

Sandstorm is simple:

Simple testing process - registration can be completed directly within the product interface
Simple deployment - enabling the policy is all it takes
Simple management - all functions are accessible in the UI with a maximum of three clicks

Sandstorm is effective:

Sandstorm blocks evasive malware - it identifies threats specifically designed to bypass sandboxes and that are missed by other solutions
Effective control - straightforward, efficient policy management
Transparent protection - detailed, incident-based reporting

Sandstorm is delivered via the cloud:

Lightning-fast deployment - immediate protection without hardware rollout or appliance upgrades
Minimal impact on performance - all processing takes place in the cloud
Collective intelligence - threat analysis data from all customers is correlated and benefits every user

What you need to know about Sophos Sandstorm

The initial implementation of Sophos Sandstorm is available with the Sophos Web Appliance 4.2. Sandstorm requires a separate licence, priced at roughly 50% of the Sophos Web Appliance Subscription. For 2016, integration of Sandstorm into the Sophos Email Appliance 4.0, UTM 9.4, the Cloud Web Gateway and XG Firewall is planned.

Buy Sophos Sandstorm licence

If you are looking for a solution to targeted threats and are interested in Sophos Sandstorm, you can purchase Sophos Sandstorm in our shop for the Sophos Firewall. Simply click on your hardware model and select the new Sandstorm licence.

More information

Sophos XG Update v16.05.0: Sandstorm now also available for XG Firewalls with SFOS
Sophos UTM 9.5: New features for Sandstorm and WAF
Sophos Central Email: Advanced version with Sandstorm

Patrizio

Patrizio is an experienced network specialist focused on Sophos firewalls, switches, and access points. He supports customers and IT teams with configuration, migration, and clean network segmentation.