Exploited unpatched vulnerabilities are the main root reason for profitable assaults, as reported in Sophos’ 2024 Ransomware Report.
The fashionable assault floor has expanded past conventional on-premises IT boundaries, with organizations working steadily unknown numbers of exterior and internet-facing belongings which can be unpatched or below protected, leaving them susceptible to cyberattackers.
Given this urgent want, we’re excited to introduce Sophos Managed Threat, powered by Tenable. This new service permits organizations to search out and remove blind spots and keep forward of potential assaults by clearly understanding and prioritizing the very best danger exposures, with skilled steering from Sophos’ devoted workforce.
Sophos Managed Threat delivers:
- Assault floor visibility
The fashionable assault floor continues to develop past the borders of conventional IT, and most organizations now have internet-facing belongings they don’t notice they personal, offering straightforward targets for menace actors. Sophos Managed Threat discovers the group’s internet-facing belongings and analyzes their exterior assault floor. - Steady monitoring
In-house IT and safety groups could lack the deep data and expertise of the exploitation panorama wanted to totally perceive the safety posture of their group’s assault floor. Sophos Managed Threat supplies skilled steering and helps set remediation priorities. - Threat-based vulnerability prioritization
New vulnerabilities are found sooner than most organizations can repair them. Understanding which of them are related and during which order to patch them is a big problem. Sophos Managed Threat identifies and prioritizes exposures utilizing intensive vulnerability protection and risk-based prioritization expertise from Tenable. - Proactive notification of high-risk exposures
Attackers search for weaknesses within the atmosphere lengthy earlier than organizations know they’re there. Figuring out high-risk exposures rapidly is essential. Sophos Managed Threat supplies proactive notification when new important vulnerabilities are found that have an effect on the group’s belongings.
“One of many largest challenges organizations face when enhancing their safety posture is prioritizing what to deal with first. Any such steering helps resolve that subject and reduces the workload for safety groups tasked with tackling vulnerability and publicity administration,” mentioned Craig Robinson, analysis vp of Safety Providers, IDC. “Options resembling Sophos Managed Threat generally is a differentiator by enabling overwhelmed groups to take a extra holistic method to steady monitoring and menace administration.”
The Sophos-Tenable Alliance
Sophos Managed Threat combines industry-leading expertise from Tenable with menace experience from Sophos, delivered as a proactive assault floor administration service. This distinctive partnership brings collectively two extremely revered cybersecurity market leaders to ship superior safety outcomes for purchasers and companions.
“Sophos and Tenable are two {industry} safety leaders coming collectively to handle pressing, pervasive safety challenges that organizations repeatedly wrestle to manage. We are able to now assist organizations determine and prioritize the remediation of vulnerabilities in exterior belongings, gadgets and software program which can be usually missed. It’s important that organizations handle these publicity dangers, as a result of unattended, they solely result in extra pricey and time-consuming points and are sometimes the basis causes of great breaches,” mentioned Rob Harrison, senior vp for endpoint and safety operations product administration at Sophos. “We all know from Sophos’ worldwide survey knowledge that 32% of ransomware assaults begin with an unpatched vulnerability and that these assaults are the most costly to remediate. The perfect safety layers to stop these points embody an energetic method to enhancing safety postures by minimizing the possibilities of a breach with Sophos Managed Threat, Sophos Endpoint, and 24×7 Sophos MDR protection.”
“Whereas the newest zero day could dominate the headlines, the most important menace to organizations, by a big margin, remains to be recognized vulnerabilities – or vulnerabilities for which patches are available,” mentioned Greg Goetz, vp of worldwide strategic companions and MSSP, Tenable. “A successful method consists of risk-based prioritization with context-driven analytics to proactively tackle exposures earlier than they change into an issue. Sophos Managed Threat, powered by the Tenable One Publicity Administration Platform, delivers outsourced preventive danger administration, enabling organizations to anticipate assaults and scale back cyber danger.”
Collaborates with the world’s most trusted MDR service
Sophos Managed Threat is obtainable as an prolonged service with Sophos MDR, which already protects greater than 21,000 organizations globally. The devoted Sophos Managed Threat workforce is Tenable-certified and works intently with Sophos MDR to share important details about zero-days, recognized vulnerabilities and publicity dangers to evaluate and examine presumably exploited environments. Organizations profit by way of common interplay, together with scheduled conferences with Sophos consultants to overview latest discoveries, insights into the present menace panorama, and suggestions for remediation and prioritizing actions.
For instance, when Sophos discovers a brand new high-risk zero-day vulnerability that would depart a corporation uncovered, Sophos Managed Threat scans their belongings for the potential of an exploit and proactively notifies the shopper. Organizations can join with the Sophos Managed Threat workforce and conveniently handle vulnerability escalation instances alongside MDR investigations in a single unified Sophos console.
Accessible quickly
With Sophos Managed Threat consultants offering insights into assault floor vulnerabilities, organizations of all sizes can scale back cyber danger, speed up their patching applications, and enhance insurability. The brand new service shall be out there on the finish of April 2024.
To study extra about Sophos Managed Threat and the way it can assist you, go to our web site or communicate with a safety skilled immediately.
