Sophos Community
Site
User
Site
Search
User
Community & Product Forums
Intercept X Endpoint
Sophos Firewall
Sophos Central
Sophos Factory
Sophos Mobile
Sophos Cloud Optix
Sophos Sensor
Sophos Switch
Sophos Wireless
Sophos Email
UTM Firewall
Community Blogs & Events
Sophos Community Blog
Community Security Blog
Product Documentation Blog
Application Control
Getting Started
Sophos Partners
Sophos Partners Group
Member Recognition
Community Leaderboards
Sophos Techvids
Product Documentation
Visit docs.sophos.com
Support Portal
Sophos.com
More
Cancel
Intercept X Endpoint
Release Notes & News
Release Notes & News
Discussions
Recommended Reads
Threat Hunting Academy
Early Access Programs
Live Discover & Response Query Forum
More
Cancel
New
Release Notes & News
Subscribe
Subscribe by email
Posts RSS
More
Cancel
Tags
Subscribe by email
More
Cancel
By date
By view count
By comment count
Descending
Ascending
Release Notes & News:
XDR Detection Filter: Added filter by Device name
Karl_Ackerman
We are adding a filter to the XDR Threat Analysis center Detections page. This will allow you filter for detection by device name. The filter will check if the data provided matches any portion of the device name.
Device name Filter for Detectio...
6 May 2022
Announcements:
MacOS Endpoint EAP - April 2022 Update
DarrenTeagles
In May 2022 the Best Protection EAP will move to version 10.3.5. All enrolled devices should automatically update. Improvements in 10.3.5 CryptoGuard stability improvements Improved performance impact when compiling with IntelliJ IDE We encou...
22 Apr 2022
Release Notes & News:
New Account Health Check feature
JS
We're working on a new feature to help identify when Central accounts are configured in ways that reduce security, so that admins can take action to improve their protection. Feedback is appreciated at any stage, you can comment on this blog post. ...
20 Apr 2022
Release Notes & News:
Linux host and container threat detection
StephenMcKay
I am pleased to announce significant enhancements to the detection and response capabilities for Linux server workloads and containers in the cloud, on-premises and virtual deployments. The new functionality, made available through the integrati...
1 Apr 2022
Release Notes & News:
New Central Endpoint/Server Intelix Service Region setting
Kevin Kingston
For Endpoint/Server customers looking to control the region being used when requesting the latest SophosLabs intelligence on files, we have introduced the new ‘Intelix Service Region’ setting. SophosLabs Intelix provides threat...
16 Mar 2022
Release Notes & News:
Updated Features for XDR Detections and Investigations
Karl_Ackerman
We are continuing to make improvements to the XDR Detections and Investigation console. Sophos is continuously developing new features and refining how existing ones work and for those who use the product regularly you will notice th...
28 Feb 2022
Release Notes & News:
XDR - Detection and Investigation EAP Closing February 28th
Kevin Kingston
With the Microsoft 365 Data Lake connector along with the Detection and Investigation functionality having reached general availability to all XDR customers we are now in a position where we are ready to close the ‘XDR – Detection and In...
25 Feb 2022
Threat Hunting Academy:
Season 3 - Exam and On-Demand Content
Nick Fisher
Hi all, I hope you've had a chance to think about your Threat Response posture since last week's sessions - have you had a conversation with anyone about your Incident Response plan yet? If not there's no time like the present! Remember, it doe...
15 Feb 2022
Threat Hunting Academy:
Season 3 Episode 5: Wrap Up
Nick Fisher
And that's a wrap! Thanks to all of you for helping us have such a great session today - I loved the conversation and talking through your questions. It really helps bring it all to life and to know that so many of you are benefitting from what&#...
10 Feb 2022
Threat Hunting Academy:
Season 3 Episode 4: Resources
Nick Fisher
I loved today's session - really good to be able to reflect on the wider business aspect of Threat Hunting and Response, and consider that this is a whole-business affair, rather than just the remit of the IT/Technical team. Thank-you all for you...
8 Feb 2022
Release Notes & News:
XDR - Changes to look back in time when querying Sophos Data Lake
Kevin Kingston
We have introduced a new Time Period selector that is applied to XDR Data Lake queries. On creating a brand new Data Lake query, a new Data Lake query based off a canned query or a new scheduled Data Lake query you will see the new Time Period select...
5 Feb 2022
Threat Hunting Academy:
Season 3 Episode 3: Resources
Nick Fisher
And that's a wrap for week 1! Thanks for being with us for the three sessions this week - we all really enjoyed delivering them and it was great to see so many of you active in the conversation. Couple of resources we mentioned during the session...
3 Feb 2022
Threat Hunting Academy:
Season 3 Episode 2: Resources
Nick Fisher
Another great session yesterday - a big thanks goes to all of you for joining in with the conversation and sending in your questions. It really brings the session to life for me and the team - we love hearing from you and understanding more about whe...
3 Feb 2022
Threat Hunting Academy:
Season 3 Episode 1: Resources
Nick Fisher
I hope you all enjoyed today's session as much as we did - it was great to get back out with the Threat Hunting Academy, and to interact with so many of you. Thanks for all of your questions and comments. I was really happy to see so many new peo...
1 Feb 2022
Threat Hunting Academy:
Season 3 starts today!
Nick Fisher
Happy February! We're really looking to getting started with Season 3 of the Threat Hunting Academy in just a couple of hours, and have so much great content to share with you all. If you haven't registered already, it's not too late - he...
1 Feb 2022
Release Notes & News:
Ransomware Protection - CryptoGuard 5 Enablement
StephenMcKay
CryptoGuard 5: A new policy option now sets the default action on detection of ransomware to terminate the process. We have kept the option to only isolate a process should you wish to keep using the setting from CryptoGuard 4. This new releas...
28 Jan 2022
Release Notes & News:
Microsoft 365 Data Integration (formerly Office 365) and Investigations now in GA
Jack L
We have now rolled out the Microsoft 365 Data Integration (formerly Office 365) and Investigations into GA. 1. Getting started with Microsoft 365 Data Integration: All XDR customers who wish to have their MS 365 data ingested into their data la...
27 Jan 2022
Announcements:
MacOS Endpoint EAP - January 2022 Update
RichardP
As of January 27 2022, the EAP is moving to version 10.3.2. All enrolled devices should automatically update. Improvements in 10.3.2 Scan Extension improvements Optimized file interception operations to boost overall system performance Additi...
26 Jan 2022
Threat Hunting Academy:
Sophos Threat Hunting Academy: Become a Sophos XDR-certified admin
Nick Fisher
Registration Now Open: Sophos Threat Hunting Academy Season 3, Feb. 1-9, 2022; 10-11 am PST/GMT/BRT. Do you ever wonder how our expert threat hunting teams stop attackers in their tracks? See firsthand by attending Season 3 of the Sophos Threat Hunt...
21 Jan 2022
Release Notes & News:
STIX scanning with XDR
Karl_Ackerman
The world is full of tools and products to facilitate threat hunting in your environment. In this post I explore how to take threat intelligence from a 3rd party repository and search my systems for the presence or absence of the indicators of ...
27 Dec 2021
Release Notes & News:
Investigations EAP Now Open
Jack L
Investigations is now available for customers who wish to opt-in. If you were previously enrolled in the XDR – Detection and Investigation EAP, you should see Investigations in the Threat Analysis Center and there is no action on your part...
17 Dec 2021
Release Notes & News:
Intercept X Protection Is Getting Even Better
StephenMcKay
A multi-year endeavor in the making, the rollout of the next-gen scanning architecture has begun. This is a ground-up rewrite of functionality that touches nearly every aspect of Intercept X and delivers multiple benefits to customers. Re...
16 Dec 2021
Release Notes & News:
Sophos XDR Data Sources, Enrichment and Pivoting
Anthony Merry
Note: With special thanks to
AK
,
mward19
,
Maxim-Sophos
, and
JoeLevy
This post provides information about Sophos XDR. It has three main sections: Data Sources Data Enrichment and Pivoting Integrations and API’s Table...
13 Dec 2021
Release Notes & News:
[Closed] Sophos XDR new feature study: January 2022
Aman Sandher
Thank you to everyone who applied. Due to an overwhelming response, we have reached our capacity. The survey is now closed. Try out a new XDR product feature as part of our Customer Research initiative in mid-January. Help us evaluate a new pro...
13 Dec 2021
>