Ransomware has become a big thing in the world of IT Security in recent years, and big business for the people using it as an attack. With the anonymity of cryptocurrency and the fact that the attackers don’t need to get hold of your data it means that any company or even home user is under threat. The attack relies on your reliance on your data, if you need that data then you’re more likely to pay up with very little effort required by the person deploying the attack.
It’s due to this growing threat that Sophos has released Intercept X; This is a piece of software aimed squarely at the threat of ransomware. As ransomware has become a bigger threat it has evolved quicker than most forms of malware and it almost seems as if a new form of ransomware appears every week. It’s due to this that traditional methods of detecting malware are falling short of detecting ransomware and it’s here that Intercept X differs from the norm.
It’s this focus on technique rather than known malware samples that allows Intercept X to stay current and keep you protected.
Intercept X works by focusing on how the attack behaves rather than the code itself which may have never been seen before. After a lot of research Sophos discovered that for ransomware to work it must alter a set of files using the same encryption method repeatedly until it has your files held hostage. As it doesn’t know which files are important to you it encrypts every file that isn’t required for the computer to run. It’s this pattern that allows Intercept X to catch the process in the act, stop it and revert the encrypted files to their original state. It’s this focus on technique rather than known malware samples that allows Intercept X to stay current and keep you protected.
Intercept X is available now as an individual product to run alongside your current Anti-Virus solution or as a bundle with Sophos Endpoint Protection.
For more information, arrange a free trial, or to get a quote on Intercept X call Planet IT on 01235 433 900 or email us at firstname.lastname@example.org.