For the 11th time in the last 11 reports, Sophos has been named a Leader in the 2019 Gartner Magic Quadrant for Endpoint Protection Platforms.
What makes Sophos a Leader?
In February 2017, Sophos announced the acquisition of Invincea. Invincea posted an assurance in Sandboxie's website that for the time being Sandboxie's development and support would continue as normal. Windows XP SP3 was supported up to version 5.22, after which support for XP was dropped.
- SophosZap is a last resort command line clean-up tool focused on uninstalling Sophos Endpoint products to revert a device to a clean state. To uninstall we strongly recommend that you use the.
- Sophos Central Endpoint fails to install with the following message: Invincea is installed - This installer is not compatible with Invincea The installer detects the presence of an Invincea products including Dell Protected Workspace (DPW) which is a Dell-branded version of Invincea. When DPW is detected, our product stops the install because they are incompatible. DPW is no longer supported. The end-of-life i.
We believe our placement is driven by our strong endpoint protection, real-world endpoint detection and response (EDR) usability, as well as our unifying platform, Sophos Central. We believe Gartner recognized Sophos for our proven record at stopping ransomware, the deep learning technology that blocks never-seen-before malware, and our anti-exploit technology.
Summary
We believe being positioned as a leader in the Magic Quadrant for EPP 11 times in a row is a fantastic achievement for Sophos. As the endpoint protection marketplace changes, we continue to evolve as well, driven by our increased brand awareness in enterprise organizations and 3rd party test results. Additionally, as EDR has become more tightly integrated with endpoint protection, Sophos is leading the way with an EDR offering that adds expertise, without adding headcount.
We believe we will retain this positioning going forward thanks to our continued excellence in endpoint protection, industry leadership in artificial intelligence, massive growth and ongoing enhancements for our EDR offering, and our upcoming managed detection and response (MDR) launch.
Intercept X Third Party Test Results
See All Results For This Question
- AAA Rated for Enterprise – 100% total accuracy rating (Jan-Mar 2019)
- AAA Rated for SMB – 100% total accuracy rating (Jan-Mar 2019)
NSS Labs
- Ranked #1 for Security Effectiveness
- Ranked #1 for Total Cost of Ownership (TCO)
AV-Comparatives
- Ranked #1 for Malware Protection (99.9% detection, 0 false alarms)
MRG Effitas
- Ranked #1 for Malware Protection
- Ranked #1 for Exploit Protection
- Editor’s Choice
AV-Test
- AV-Test endpoint “Top Product”: 6/6 Protection, 6/6 Usability, 5.5/6 Performance
- AV-Test (Mac): Perfect Score 6/6 Protection, 6/6 Usability, 6/6 Performance
- AV-Test (Android): Perfect Score
Gartner, Magic Quadrant for Endpoint Protection Platforms, August 2019, Peter Firstbrook, Dionisio Zumerle, Prateek Bhajanka, Lawrence Pingree, Paul Webber.
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
I am so excited to announce our acquisition of Invincea, a next-generation endpoint security company founded by Dr. Anup Ghosh in 2009.
One may ask, if you already have great next-generation technology, why do you need Invincea’s technology?
There’s an “Avengers” analogy to be had here: It’s great to have a group of heroes around to defend the world. But it’s much better to add another hero to the ensemble.
Think of Invincea as the superhero that takes our ensemble to the next level – the entity that adds neural network-based machine learning to the team.
The path to Invincea: Endpoint Protection and Intercept X
In recent years Sophos has worked to reduce our reliance on signatures, moving from traditional antivirus to next-generation advanced malware detection and prevention with technologies like behavioral detections, malicious traffic detections, emulation, and security heartbeat. As a result, only a tiny fraction of the detections in Sophos Endpoint Protection are signature-based.
Because of our ensemble of next-generation technology, we have been able to keep malware detection rates high and false positives low. For years, the security market has focused on scanning executables for anti-malware, but now we see a growing number of data breaches occur due to exploits. As a result, we’ve pushed aggressively into the realm of next-generation exploit detection/prevention with Sophos Intercept X.
In September we launched Intercept X, a powerful signatureless next-generation product with exploit protection, anti-ransomware, protection against in-memory malware, root cause analytics and forensic-based malware removal. This new product was developed by combining technologies from Sophos with that acquired from our SurfRight acquisition in 2015.
Expanding the ensemble
Invincea was built to address the gathering threat from advanced adversaries, most notably those using zero-day methods that target companies, governments and critical infrastructure. A neural network-based approach to machine learning is at the heart of this next-generation signatureless approach. The algorithms were developed by the same data scientists who worked on the DARPA Cyber Genome project at Invincea Labs.
With Invincea, we add this effective machine-based learning approach to detect malware that previously could sneak past traditional signature-based technology. In third-party testing, and with customers, it has proven to be extremely effective while having low false positives.
Invincea currently protects companies and government agencies with between 200 and 200,000 employees.
Now it’s part of our ensemble, and will make us even stronger.
Machine learning
Let’s focus some more on the machine-learning approach that’s central to how Invincea functions.
The process is more efficient, performant and effective than anything we’ve seen before. And with this, the better our ability to stop malware in its tracks before it becomes a problem for the customer.
Some of the high points:
- Deep Learning Neural Network implementation leads to better detection and lower false positives as compared to more primitive ML implementations.
- Invincea’s approach is targeted at finding malware that shares common characteristics with known malware, but whose similarities often escape human analysis; this makes it effective at volume detection of derivative malware, using methods that scale.
- Deep learning detection of executable malware with Bayesian calibration maximizes both sensitivity and specificity.
- Techniques are extensible to detections beyond just executables and beyond just files.
- Behavioral-based detections provide extensive coverage of the tactics and techniques employed by advanced adversaries.
Sophos Invincea
How we’ll integrate Invincea
Invincea’s technology will be integrated into an Endpoint Protection product and offered through Sophos Central. This will be a key part of our unique security strategy, Synchronized Security.
With Synchronized Security, our products speak directly to one another to share actionable intelligence that can improve effectiveness and responsiveness to threats. With Invincia’s technology, when we identify an attack, our Security Heartbeat will transmit this information to several Sophos products such as our XG Firewall and SGN Encryption and they will take the appropriate action to further product our customers.
Invincea – Sophos News
We are very excited to roll our new, more comprehensive ensemble, and we look forward to the stronger security it’ll provide our customers.