TrueCrypt’s sudden demise

Despite being nominally open source software, TrueCrypt was always a bit secretive. Unlike many free, open source projects, the main developers and maintainers were unknown to the community. Someone, apparently one of the maintainers of TrueCrypt, shut down the project, claimed the product was not secure, and replaced it with a modified version designed only for undoing the encryption of previous versions. Sophos security adviser Maxim Weinstein tells us that TrueCrypt’s warning should be taken seriously. “We don’t know exactly why this was done, who exactly did it, or whether the software is, in fact, compromised or to what degree,” Max tells Sophos Blog. “As the community attempts to unravel the mystery, it’s best for users to stop using TrueCrypt and to find another solution.”

5 tips for data security

Encrypting your data and communications is vital in today’s security landscape. Our security experts offer these five key recommendations for moving beyond TrueCrypt to an alternative for data protection.

• Use vetted, trusted, operating system-level encryption like Microsoft BitLocker and Mac FileVault 2. TrueCrypt was not using the latest technology, so now is a great time to move to compliant encryption standards.
• The real issue with business use of encryption has been key management. You need good key management that enables encryption beyond just full-disk on your laptops.
• Data isn’t only on your disks. Users are taking it everywhere, especially the cloud. Now’s a good time to reevaluate your data protection strategy to make sure you’re protecting data everywhere.
• Non-Windows platforms need encryption, including OS X, Android and iOS. And don’t forget any systems still running Windows XP, you’ll need to protect them too.
• A thumb drive or DVD can hold sensitive records too. You need to encrypt all your storage devices as well.

The TrueCrypt alternative: SafeGuard Encryption

Only Sophos offers a single solution for all your encryption needs — for all your PCs, laptops, cloud, mobile devices, removable media, and file shares. And our software has been certified by several crypto-analysts, including the Federal Office of Information Security in Germany (the BSI), as truly secure.

You can manage all your data encryption simply, from a central console. And SafeGuard Encryption won’t slow users down. Visit sophos.com/truecrypt to learn more. Or click here for a free trial of SafeGuard Encryption.

You can read the original article, here.

There are many reasons why you should consider Sophos for your next firewall — here are five of them.

1. We keep it simple. It’s super easy to deploy, manage, and use – you’ll never need to configure with the command-line again.

2. You get lightning speed. Our SG Series appliances blow the competition away in independent tests. And if you prefer you can go software, virtual or cloud-based instead.

3. Everything’s on one box. It gives you the latest next-gen firewall features. Plus email, endpoint, and mobile features you can’t get anywhere else.

4. Reporting’s built in. Detailed reports come as standard, stored locally on a built-in hard drive. No separate appliances or tools required.

5. And we’re a three-time Gartner Magic Quadrant Leader. No other firewall vendor can say that. So you can rest assured you get proven protection you can trust from a Leader in UTM, Endpoint and Mobile Data Protection.

All of this good stuff, packaged in one super-fast, easy-to-use solution. To learn more, and see how we stack up against the competition, visit sophos.com/firewall.

You can read the original article, here.

Sender Policy Framework (SPF) and DomainKeys Identified Mail (DKIM) were both designed to help counteract this issue by helping legitimate senders prove that their email isn’t forged.   Now you can implement anti-spam rules in the Sophos Email Appliance that act on the presence or lack of both SPF and DKIM validation and you can even add your own DKIM signatures to outbound mail, providing an added layer of trust to email originating from your organization.

As you would expect, enabling SPF or DKIM policy rules couldn’t be simpler.  With just a couple of clicks you can easily add sender validation using these frameworks to your spam evaluation criteria.

But that’s not all, with v3.8 we’ve also enabled wildcards for selecting sub-domains for  “Select Users” and “Custom Groups” when setting up policy and a few more enhancements.  This release also includes a patch for the OpenSSL man-in-the-middle vulnerability.  You can read all about the updates in the release notes.

Sophos Email Appliance Documentation and Release Notes. Existing email appliance customers will receive this automatically during your next specified update window.

You can read the original article, here.

And, as an IT professional, I faced the same challenge in all of these roles: SMBs have many of the same infrastructure needs as larger enterprises, but I didn’t have the time, budget or expertise to implement enterprise technology. Antivirus is a great example.

When I worked at an educational non-profit organization, we had a couple hundred users and a fast-changing environment. We had students doing who-knows-what with the classroom computers, limited Internet bandwidth that was often brought to its knees by people watching streaming video during peak usage times, and an Executive Director who wanted to use his Blackberry for work.

I was familiar with technologies like device control, host-based intrusion prevention systems (HIPS), web content filtering, and mobile device management. But who had the time or budget to research, acquire, learn, configure and maintain each of these systems?

Like most SMB IT professionals, I was left with a choice: attempt to implement one or more complex enterprise solutions as best I could, or I could compromise on the features and integration by selecting a hodgepodge of “small business” products. Goodbye Active Directory sync and HIPS! Hello separate web filtering, antivirus and mobile solutions!

It is no exaggeration to say that if someone had showed me Sophos Cloud back then, I would have thought it was an April Fool’s prank. No server and console to configure and install? Enterprise-class technology that is both affordable and easy to use? Everything integrated into a single intuitive interface?

Surely that’s not possible! And, to be fair, it wasn’t possible back when I was working in IT. But today it is.

About Sophos Cloud

Sophos Cloud provides everything you need to manage security for all of your organization’s end user devices: Windows, Mac and mobile. From device control to HIPS, Active Directory sync to web content filtering, it’s all there.

More importantly, it’s designed to give you enterprise-level protection with Sophos’s trademark simplicity. It’s almost enough to make me wish I was working in IT again.

Try it out today. You’ll be up and running with the 30-day free trial in just 60 seconds.

You can read the original article, here.

The mobile workforce are the super productive bunch. They are the ones pushing the envelop of BYOD. For the mobile workforce, balancing work and life can mean that they check corporate email on a personal device, and browse the Internet using a corporate laptop while traveling.

Many IT professionals would agree that empowering these mobile workers with the tools they need while ensuring security can be a tough balancing act. Here are a few tips to help you secure your mobile workforces without overworking the IT folks.

1. Choose a cloud-based security subscription service that offers secu­rity software and policy updates anywhere without slowing down users.
Let’s face it, when your users are on the road, how often do they use a VPN to connect? If you rely on VPN connection to send security updates or refresh policies, you’ll be constantly behind.

2. Take advantage of security software web filtering capabilities that block malicious and web-borne threats before they reach the computer, as well as enforce proper usage policy.
When your mobile workers are on the road, it is expected that they would connect to the hotel’s Wi-Fi to browse the Internet to check the sports page on their work iPad.

The key is to keep them protected from web-borne threats. Take advantage of endpoint enforced web protection capabilities built-in to the local security agent. This way, you avoid latency and eliminate the need to backhaul traffic using a VPN connection. (We already know that people don’t always connect to the VPN before they browse the Internet!)

3. Select a solution that will protect Windows and Mac com­puters equally with a single policy.
Take a look at an airline lounge and count how many Macbooks are being used. According to our recent survey, 10% of laptop computers on the corporate network are Macs.

Get a security solution that will protect Windows and Mac equally. To reduce IT’s workload, it is also important to ensure that you can manage both with a single policy engine. This way, you will only have to configure policy once and it works automatically on both Windows and Mac OS X.

4. To protect data and ensure compliance, be sure to encrypt data on both Windows and Mac.
We all know encryption is essential for mobile workers, yet 80% of corporate computers are un-encrypted. Many mobile workers refuse to get encryption on their laptops out of concerns of slow speeds and longer boot time.

Select an encryption solution that works on both Windows and Mac, and with high performance that won’t slow down your users.

5. Select a single solution that gives you visibility into all the devices your remote users are using, including Windows or Mac laptops and mo­bile devices.
Mobile users today use an average of three devices to get their work done. Ideally, use a solution with a user-centric view, so when you are trouble shooting for a mobile worker, you can easily see the events, devices used and policy applied to the specific individual.

About Sophos Cloud

Businesses and IT managers have a simple choice – Sophos Cloud. There’s no server to install and the management console is hosted in the cloud. So, you’ll be up and running in just 60 seconds.

1) Windows, Mac and mobile device security in a single, integrated console
2) User-centric pricing, policy and reporting
3) Comprehensive protection without complexity

Try Sophos Cloud for free.

You can read the original article, here.

Sign up for our beta program today and we’ll notify you by email when the beta is available. And here’s the best part — if you sign up for the beta before 30th September, you’ll be automatically entered to win a $25 Google Play gift card!

Here’s how to sign up for the beta:

1. Join the Sophos Mobile Beta Google group: http://soph.so/yUzZg
2. Opt in to receive the beta software, triggered by an email from the Google group

Sign up before 30th September — we’ll draw 20 lucky winners for the $25 gift card.

Sophos Mobile Security for Android

Sophos Mobile Security for Android is a free app available on Google Play.

Sophos Mobile Security

Sophos Mobile Security is a robust yet lightweight app that protects your Android devices without compromising performance or battery life. Using up-to-the-minute intelligence from SophosLabs, it automatically scans apps as you install them. Other features include a privacy advisor, data and device encryption, and per-app password protection that you can set up for sensitive apps like your email.

We’ve received several awards and many great reviews for Sophos Mobile Security, which has been downloaded more than 100,000 times from Google Play. Sophos Mobile Security is also available as an enterprise version you can manage through Mobile Control, our enterprise mobility management and security product.

You can read the original article, here.

SC Magazine’s July 2014 review calls Sophos Mobile Control 4.0 (SMC) a “solid, quality enterprise-capable product,” and notes that SMC is “easy to deploy and manage with a vast set of features.”

This award shouldn’t be too surprising — SMC version 3.5 also received five stars from SC Magazine. And we’ve been recognized as a Visionary in the Gartner Magic Quadrant for Enterprise Mobility Management.

Here are some other highlights from the SC Magazine review:

1. SMC supports BYOD initiatives with its self-service portal, so users can “handle most of the help desk activities themselves if admins choose this path.”
2. “Configuration, user provisioning and device enrollment took only minutes.”
3. “The dashboard was feature-rich and easy to navigate.”
4. “One of the features of note was the integration of the anti-virus and protection solution well known to Sophos customers.”
5. Support documentation provided “excellent information for each feature of the product” that were “clear and easy to understand.”
6. “Value for money is good.”

Sophos is a Visionary in Enterprise Mobility Management

​Gartner’s Magic Quadrant for Enterprise Mobility Management Suites 2014 recognizes Sophos in the Visionary Quadrant. Find out what Gartner has to say about Sophos and SMC in the free Magic Quadrant report.

Learn more about Sophos Mobile Control

SMC 4.0 takes data protection beyond the office door by ensuring persistent mobile encryption on devices. Additional network access control based on device compliance status makes mobile device management, content management and mobile security simple and effective.

Available on premise or as a service, SMC provides a simple and differentiated approach for small and mid-market organizations to manage and secure mobile devices, content and applications. Watch the video for a quick overview of Sophos Mobile Control, or sign up for a free trial to see for yourself why SMC is the best EMM product for businesses of any size.

You can read the original article, here.

Sophos is the only IT security company to be positioned as a Leader across three critical security areas: Unified Threat Management (UTM), Mobile Data Protection and Endpoint Protection Platforms. “We believe it is a privilege to receive recognition from Gartner. The momentum in our UTM business is truly exciting,” said Bryan Barney, General Manager, Network Security Group, Sophos.

“Most notably, in the past year we’ve released our SG Series appliances, the fastest UTM devices we’ve ever produced and expanded the UTM protection we offer with our new cloud-based sandboxing, integrated mobile device management and really simple to use email encryption. Smaller businesses need effective security that is easy to use and that’s exactly what we provide. And it’s why we’re seeing more and more partners and customers switching to Sophos for their UTM and Next-Gen Firewall needs.”

In the most recent quarter of trading, April to June 2014, Sophos recorded a 27 percent increase in UTM sales, and a 33 percent increase in new customer business for UTM. This demonstrates the significant share gains the company is making; Sophos’ network security business now accounts for billings in excess of $150 million — with tremendous growth across North America, Asia Pacific and EMEA, among other regions. Additionally, the company’s “channel first” focus continues to deliver success with the signing of several new strategic channels to market such as the recently agreed distribution deal with Ingram Micro in North America. Sophos now has over 25,000 UTM channel partners worldwide, with the number of partners growing at over 20 percent a year.

According to Gartner, “the Leaders quadrant contains vendors at the forefront of making and selling UTM products that are built for midsize-business requirements. The requirements necessary for leadership include a wide range of models to cover midsize-business use cases, support for multiple features, and a management and reporting capability that’s designed for ease of use.

Vendors in this quadrant lead the market in offering new safeguarding features, and in enabling customers to deploy them inexpensively without significantly affecting the end-user experience or increasing staffing burdens. These vendors also have a good track record of avoiding vulnerabilities in their security products. Common characteristics include reliability, consistent throughput, and products that are intuitive to manage and administer.”

To download a complimentary copy of this report, click here.

You can read the original article, here.

The partnership means users of Sophos Mobile Control 4.0 and Check Point Mobile VPN can link the two solutions to provide network access control for any mobile devices attempting to use the corporate network. Non-compliant devices are isolated from the network, protecting the organization from unauthorized mobile devices. This ensures that only managed devices that meet an organization’s security policy may connect and use business resources.

Mobile devices continue to multiply rapidly in the workplace and today’s flexible working styles mean that, increasingly, employees are requiring and gaining access to the corporate network wherever they are. As a result of this surge in mobility, effectively securing both corporate data and networks has become an enormous challenge for IT and security managers. Much of an IT administrator’s day can be spent provisioning, securing, locating, managing and updating these mobile devices.

Sophos Mobile Control continually assesses the compliance status of each mobile device – detecting jailbreaks, blacklisted apps or insecure settings. Via a simple out-of-the-box interface with Check Point’s Mobile VPN, it blocks any non-compliant device from accessing the corporate network via VPN, proactively reducing the risk of data breaches.

“By integrating Check Point Mobile VPN with the mobile device management features of Sophos Mobile Control, IT departments can easily manage how mobile users access centrally-stored corporate resources, allowing them to regain control of their networks all through a simple interface,” says Alon Kantor, vice president of business development at Check Point Software Technologies. “Check Point’s partnership with Sophos provides our joint customers with a simple solution for the increasingly common problem of mobile network access control.”

“The rapid growth of mobile devices in the workplace combined with today’s range of threats means that mobile security is an increasing priority for many organizations,” says Ari Buchler, senior vice president corporate development at Sophos. ”We’re delighted to be partnering with Check Point to provide a simple solution to this complex problem, and to enable users of Sophos Mobile Control and Check Point Mobile VPN to keep compromised mobile devices off their networks. This integration demonstrates both companies’ commitment to meeting the needs of customers in the face of a continuously evolving threat landscape.”

Sophos Mobile Control 4.0

Sophos released Sophos Mobile Control 4.0 in May 2014. In addition to managing mobile devices, applications and email, it is the only EMM solution to offer file-level encryption, ensuring that each document connected to the server remains secure and that users can collaborate safely. Sophos Mobile Control also delivers robust, integrated security against malware and malicious web sites to protect against the rapidly-growing, nearly 1 million unique pieces of mobile malware seen by SophosLabs. In addition, Sophos is the only EMM vendor to offer categorical web filtering so organizations can control network performance and security by managing which websites their users can access. Available on premise or as-a-service, Sophos Mobile Control provides a simple and differentiated approach for organizations to manage and secure mobile devices, content and applications. Learn more about Sophos Mobile Control 4.0.

According to IDC, Sophos Mobile Control is the market leader among small and medium businesses in North America, with 25% market share. Sophos is also the only IT security company to be positioned as a Leader in all three of the following Gartner Magic Quadrants: Unified Threat Management (UTM), Mobile Data Protection and Endpoint Protection Platforms.

Integration with Check Point Mobile VPN

Check Point Mobile VPN application establishes a secure VPN (Virtual Private Network) tunnel to the corporate network infrastructure via a Check Point Security Gateway. By unifying Sophos Mobile Control and Check Point VPN gateways, IT departments can ensure that only compliant devices are allowed access to the corporate network. Compliance policies for corporate owned mobile devices reside on the Mobile Device Management Servers.

When a device attempts to connect to the corporate network, compliance is checked. This can prevent users from installing a VPN client on unmanaged devices and trying to access the organization. The Security Gateway can also block the unknown devices of valid users.

You can read the original article, here.

And we’ve been named a Visionary in the Gartner Magic Quadrant for Enterprise Mobility Management. Please contact technical support if you need more information or guidance.

What’s available in Sophos Mobile Control 4.0

SMC offers a full range of enterprise mobility management features, including:

• Central management of your mobile devices, content and applications with a user-centric approach
• Robust security protection with built-in anti-malware and web filtering
• Mobile content management with individual file encryption, ensuring encryption without compromise on your devices
• Reduced risk of data breaches with integrated Network Access Control
• Easy deployment and management with user based pricing, simplifying your budget

Highlights

• Use a simple role-based web console
• Push out policies and apps over the air
• Assign policies based on users’ Active Directory groups
• Regularly check for device compliance
• Remotely locate, lock and wipe devices
• Secure mobile content on iOS devices
• Filter web pages by category on Android devices
• You can choose either on-premise or SaaS deployment, or as a subscription option with Sophos Cloud.

Learn more about the great features in Sophos Mobile Control, or sign up for a free trial.

And find out how Sophos gives our customers security that’s simply better.

You can read the original article, here.

Although it can be exploited in some cases, the good news is that not all implementations can be exploited, and only certain services and applications allow a hacker to exploit this issue. Please see our article on Naked Security for an explanation of the vulnerability itself.

In addition, we have examined our products and we are confident that the Shellshock vulnerability can’t be exploited in any Sophos product. Our IT systems have also been patched or were not vulnerable. For the latest information on how this bug affects Sophos products, please refer to our knowledgebase article from Sophos Support. 

You can read the original article, here.

Best in Biz Awards, the only independent business award program judged by members of the press and industry analysts.

The Arkeia Network Backup Suite comprises Arkeia Software’s line of backup-and-restore solutions. Administrators can deploy Arkeia’s backup servers as software applications, hardware appliances or virtual appliances. Arkeia Software protects both virtual and physical environments and manages backups to disk, to tape, and to the cloud.

For more information click here