Sophos announces new X-Ops unit to streamline defence against cyber attacks

Sophos sign outside a building
(Image credit: Shutterstock)

Sophos has announced new Sophos X-Ops, a new cross-operational unit designed to help organizations better defend against ever-changing and complex cyberattacks.

The new team ties together the security vendor’s established SophosLabs, SecOps, and Sophos AI sections to provide a unified team that can deliver a more streamlined counter against fast-moving threats.

In an announcement, Sophos said the new X-Ops unit leverages the “predictive, real-time, real-world, and deeply researched threat intelligence from each group.”

“Scalable end-to-end operations now need to include software developers, automation engineers, malware analysts, reverse engineers, cloud infrastructure engineers, incident responders, data engineers and scientists, and numerous other experts, and they need an organizational structure that avoids silos,” explained Joe Levy, chief technology and product officer at Sophos.

To tackle this, Sophos will leverage the collective knowledge of its threat response team, which tackles the likes of ransomware, its labs team of 500+ global experts, and its AI team.

“We’ve unified three globally recognized and mature teams within Sophos to provide this breadth of critical, subject matter and process expertise,” Levy continued.


Storage's role in addressing the challenges of ensuring cyber resilience

Understanding the role of data storage in cyber resiliency


“Joined together as Sophos X-Ops, they can leverage the strengths of each other, including analysis of worldwide telemetry from more than 500,000 customers, industry-leading threat hunting, response and remediation capabilities, and rigorous artificial intelligence to measurably improve threat detection and response.”

Additionally, Sophos is issuing its research titled ‘OODA: X-Ops Takes On Burgeoning SQL Server Attacks’. It covers the increase in attacks against unpatched Microsoft SQL servers and how attackers used a fake downloading site and grey-market remote access tools to distribute multiple ransomware families.

In that instance, Sophos said its X-Ops unit identified and nullified the attacks through its teams’ combined knowledge and analysis of the incidents.

“Modern attackers are often too organized and too advanced to combat without the unique combined expertise and operational efficiency of a joint task force like Sophos X-Ops,” Levy added.

Daniel Todd

Dan is a freelance writer and regular contributor to ChannelPro, covering the latest news stories across the IT, technology, and channel landscapes. Topics regularly cover cloud technologies, cyber security, software and operating system guides, and the latest mergers and acquisitions.

A journalism graduate from Leeds Beckett University, he combines a passion for the written word with a keen interest in the latest technology and its influence in an increasingly connected world.

He started writing for ChannelPro back in 2016, focusing on a mixture of news and technology guides, before becoming a regular contributor to ITPro. Elsewhere, he has previously written news and features across a range of other topics, including sport, music, and general news.