">
TechMoran
  • About Us
  • Jobs
  • Motoring
  • Money
  • Pitch Your Startup
  • Submit Your Post
  • Freelance Gigs
Sunday, March 7, 2021
  • Startups
  • Reviews
  • Insider
    • Obituaries
  • Business
  • Women
  • Blockchain
  • Columnists
  • Hacks & Facts
    • How To
  • Editions
    • US Edition
    • India Edition
    • MENA Edition
    • Asia Edition
    • Europe Edition
    • International Edition
  • Classifieds
No Result
View All Result
TechMoran
">
Home Tech

Sophos Launches Rapid Response Service to Identify and Neutralize Active Cybersecurity Attacks

Milcah Lukhanyu by Milcah Lukhanyu
4 months ago
in Tech
14 min read
0

Related posts

Zipline, UPS partner with government of Ghana to deliver first COVID-19 vaccines

March 5, 2021
0

Facebook to expand transparency on Political Ads in more countries including Kenya and Ethiopia

March 5, 2021
0

Safaricom’s ‘Browse Bila Waas’ Campaign to See Customers Enjoy 500 MB Daily Bonus Data

March 5, 2021
0
space-hotel-4

California Startup Has Announced Plans To Begin The World’s First Space Hotel

March 5, 2021
0



Lightning-Fast Incident Response Minimizes Attack Damage and Reduces Recovery Time

Sophos Rapid Response Identifies First Use of Buer Malware Dropper
to Deliver Ransomware in New Wave of Ryuk Attacks


Sophos today announced the availability of Sophos Rapid Response, an industry-first, fixed-fee remote incident response service that identifies and neutralizes active cybersecurity attacks throughout its entire 45-day term of engagement. Sophos Rapid Response provides organizations with a dedicated 24/7 team of incident responders, threat hunters and threat analysts to quickly stop advanced attacks and remove adversaries from their networks, minimizing damage and costs, and reducing recovery time. 

Sophos Rapid Response has identified the first known use of the Buer malware dropper to deliver ransomware. In new research published today from Sophos Rapid Response and SophosLabs, “Hacks for sale: Inside the Buer Loader Malware-as-a-Service,” Sophos details how Buer compromises Windows PCs, and enables attackers to deliver a payload. Sophos Rapid Response made the discovery while mitigating a recent Ryuk ransomware attack, which was detected and stopped as part of a wave of Ryuk attacks using new tools, techniques and procedures. In this incident, the relentless attackers used a new variant of Buer in an attempt to launch Ryuk ransomware, before expanding their efforts to mix the use of Buer with other types of loader malware.

“When you’re hit with an attack, time is of the essence. Every minute between initial compromise and neutralization counts as adversaries race through the attack lifecycle,” said Joe Levy, chief technology officer at Sophos. “Advanced attacks can quickly halt business operations, and IT managers who have experienced ransomware first hand know this all too well, reporting the need to spend proportionately more time on incident response and less time on threat prevention than those who haven’t been hit. Sophos Rapid Response disrupts active attacks, eliminating the complex and time consuming process of stopping determined attackers, so organizations can get back to their normal operations faster.”

Sophos Rapid Response neutralizes a wide range of security incidents, including ransomware, network breaches, hands-on keyboard adversaries, and more. The Sophos Rapid Response team can be onboarded and activated within hours, and the majority of attacks triaged within 48 hours.

“This year, devastating ransomware attacks have unfortunately been a gold rush for cybercriminals, and it’s unlike anything the cybersecurity industry has ever experienced. Nearly 85% of the attacks that Sophos Rapid Response has been involved in thus far included ransomware – notably Ryuk, REvil and Maze – and I can say with confidence that most of the other attacks that we were called in to stop would have also resulted in ransomware had we not acted so quickly,” said Peter Mackenzie, incident response manager at Sophos. “Readily accessible tools make it possible for attackers to net bigger pay-outs in one week’s worth of work than most people will make in their lifetime. Criminals infiltrate networks and stealthily plan their attacks in the background, before strategically launching ransomware as the final payload – often during the overnight hours when no one is watching in order to execute on as many machines as possible. Sophos Rapid Response takes immediate action to extinguish the fire, which in the case of a hospital that we helped this month after it was hit by Ryuk ransomware and forced to shut down, meant the difference of life or death.”

Sophos Rapid Response is part of Sophos Managed Threat Response (MTR), a global team that provides proactive, fully-managed threat hunting, detection and response services. As one of the industry’s most widely used managed detection and response (MDR) services with more than 1,400 customers, Sophos MTR stands apart with its ability to proactively take action on an organization’s behalf to mitigate threats in real time.

Once immediate threats are neutralized during a Rapid Response engagement, the Sophos Rapid Response program shifts to continuous monitoring with around-the-clock proactive threat hunting, investigation, detection, and response from the Sophos MTR team. A threat investigation report details discoveries made, actions taken and other remediation recommendations, helping organizations understand attack origination as well as what assets were compromised, and data accessed and exfiltrated.

Sophos Rapid Response is available now to both existing and non-Sophos customers. Unlike traditional incident response and forensic services that require complex and protracted deployments with hourly pricing structures, Sophos Rapid Response is a remote offering with a fixed pricing model based on an organization’s number of users and servers. Sophos Rapid Response is also structured to accommodate businesses of all sizes, including smaller organizations, which until now have not been able to easily leverage a service such as this without requiring a retainer.

What analysts and channel partners say:
“Cyberattacks are getting worse and more sophisticated. As we’ve seen this year, no one is off limits, even in a time of crisis. Organizations need to ready themselves as more than 85 percent of security professional survey respondents typically tell IDC that they have experienced at least one security breach in the past two years that involved the spending of significant extra resources to rectify,” said Frank Dickson, program vice president at IDC. “Sophos Rapid Response is an offering that no one wants until they need it. Many organizations are simply either not prepared to fight an active attack or want to respond more quickly and aggressively than internal resources alone allow. With predictable, fixed-fee pricing and the ability for same-day activation, Sophos Rapid Response provides certainty when customers want it most.”

“A charitable organization providing housing and support services to thousands of vulnerable adults was hit by ransomware, taking down operations at all of its more than 40 facilities. The organization called us for help, and we immediately deployed Sophos Rapid Response. Working together with Sophos Rapid Response, we were able to get them back up and running quickly so they could continue serving those in need,” said Steve Weeks, president at Netcetera. “Netcetera clients already running Sophos’ next-generation security suite are well protected, and we haven’t seen a ransomware incident in our managed client base in many years. When we get a call for help from new clients, however, I’ll always bring in Sophos Rapid Response. The highly responsive team is rock solid in its ability to work with us and get compromised organizations out of the danger zone, and ultimately, help us to close new business opportunities.”

“Sophos Rapid Response perfectly complements our existing in-house incident response services, advancing our ability to provide proactive preparedness plans and immediate support in worst-case scenarios. We’re not just selling a transactional service – with Sophos Rapid Response, we’re fixing long-term problems and preventing them from happening again,” said Jeremy Weiss, cybersecurity practice lead at CDW. “I’ve seen firsthand how the Sophos Rapid Response team is able to cut through all of the noise to quickly remediate security incidents within hours, and the feedback from customers has been nothing but exceptional. Sophos Rapid Response is an instrumental offering that elevates our customers’ security posture to the next level.”


Readers 1,304

Share

  • Click to share on Telegram (Opens in new window)
  • More
  • Click to share on Tumblr (Opens in new window)
  • Click to print (Opens in new window)
  • Click to share on LinkedIn (Opens in new window)
  • Click to share on Pinterest (Opens in new window)
  • Click to share on Reddit (Opens in new window)
  • Click to share on Pocket (Opens in new window)

Like this:

Like Loading...

Related

Milcah Lukhanyu

Milcah Lukhanyu

Milcah Lukhanyu covers daily news briefs at TechMoran. She is the person who will probably read your press release and get the story out of it or totally trash it. Send tips to [email protected]

Related Posts

Startups

Zipline, UPS partner with government of Ghana to deliver first COVID-19 vaccines

March 5, 2021
0
Tech

Facebook to expand transparency on Political Ads in more countries including Kenya and Ethiopia

March 5, 2021
0
Tech

Safaricom’s ‘Browse Bila Waas’ Campaign to See Customers Enjoy 500 MB Daily Bonus Data

March 5, 2021
0
space-hotel-4
Tech

California Startup Has Announced Plans To Begin The World’s First Space Hotel

March 5, 2021
0
weWalk
Tech

Blind Inventor Creates Cane That Uses Smart Technology To Help Visually-Impaired People

March 5, 2021
0
Tech

How is the Blockchain and Fashion industry a perfect fit?

March 5, 2021
0
Mandatory Credit: Photo by Evan Vucci/AP/Shutterstock (10434333bm)
Donald Trump, Sauli Niinisto. President Donald Trump speaks during a meeting with Finnish President Sauli Niinisto in the Oval Office of the White House, in Washington
Trump, Washington, USA - 02 Oct 2019
social media

Trump YouTube Suspension Will Lift After ‘Risk of Violence’ Drops, Says CEO

March 5, 2021
0
five women laughing
Business

Beauty Pressures For Women In Business

March 4, 2021
0

ADVERTISEMENT

Join our Mailing List

Loading

Recent Posts

3 Top Ways to Secure Your Windows Computer

March 6, 2021

Zipline, UPS partner with government of Ghana to deliver first COVID-19 vaccines

March 5, 2021

Facebook to expand transparency on Political Ads in more countries including Kenya and Ethiopia

March 5, 2021

Twitter Is Testing An Edit Button For Those Who Like Correcting Grammatical Errors

March 5, 2021

ATU & Ericsson in Talks for 5G Mobile Services & Adoption Across Africa 

March 5, 2021
">
">

Follow Us

">

There are many sites out there focused on blowing off some steam, from funny entertainment to thrilling experiences like playing online, in some cases online gaming could grant you the chance to win extra money. We came across rocketpot.io while browsing for a good btc casino online and it left us a very good impression with their wide variety of games and crypto offering.

Privacy & Cookies: This site uses cookies. By continuing to use this website, you agree to their use.
To find out more, including how to control cookies, see here: Cookie Policy

© 2019 Moran Media Group - All rights reserved TechMoran.

No Result
View All Result
  • Startups
  • Reviews
  • Insider
    • Obituaries
  • Business
  • Women
  • Blockchain
  • Columnists
  • Hacks & Facts
    • How To
  • Editions
    • US Edition
    • India Edition
    • MENA Edition
    • Asia Edition
    • Europe Edition
    • International Edition
  • Classifieds

© 2019 Moran Media Group - All rights reserved TechMoran.

Login to your account below

Forgotten Password? Sign Up

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.
%d bloggers like this: