We regularly update Sophos Central with improvements or new features. You can see the details here.
Security information and event management (SIEM) integration has been added to Sophos Central Admin. Whether you use Splunk, ArcSight, or any number of solutions, you'll find data easy to ingest thanks to Common Event Format output. Read more
Sophos Endpoint Protection for Windows XP and Server 2003 will be retired soon. Speak to your account manager if you need extended support. Read more
This release allows for granular permission-level visibility into the existing audit log feature by way of role-based access control (RBAC) functionality. RBAC can be set up to meet the needs of your IT organization with pre-defined full-access, read-only, and help-desk roles. Read More
We've streamlined the UI a bit: Firewall registration has now moved to the System Settings menu. And in the Admin menu, "Administration & Licensing" has been split into two pages: "Licensing" and "Account Details". Read More
This Wireless update packs a wallop! Enjoy fast roaming, dynamic VLAN, MAC-based access control and more than a dozen additional features and enhancements. Read More
Server Groups let you set policies on a group of servers rather than individually.
Sophos Intercept is a new offering for endpoints. It protects against ransomware and exploits that are used to infect devices. It also helps you investigate security breaches. You can install Sophos Intercept together with Sophos Endpoint, or, if you prefer, alongside other anti-malware products. See https://community.sophos.com/spectrum/.
EAP (Early Access Programs) is a new way to try out new features from Sophos. You can see all public Beta features and join the ones that interest you. EAP also includes invitation-only Betas, where we send you a code that gives you access. And, although we would be sad to see you go, you can also use EAP to leave a Beta. Take a look.
Email Security is a secure email gateway you manage from Sophos Central. Features include:
You need a Sophos Email license to use it. For more info see https://www.sophos.com/en-us/products/sophos-email.aspx
We’ve now made these features available for your Windows servers. All were already available for workstations.
MTD (malicious traffic detection) detects network traffic that indicates that a "command and control" server may be trying to take control of your server. See https://community.sophos.com/kb/en-us/121607
Application control lets you prevent users from running applications that are unsuitable for the office. See https://community.sophos.com/kb/en-us/63656
File reputation checking warns users if they’re about to download files with a low reputation (based on frequency of downloading and other factors). See https://community.sophos.com/kb/en-us/121319
We’ve now released Peripheral Control for Windows servers, which lets you set policies to control access to peripherals. You can also monitor peripherals or exempt individual peripherals from control. This feature mirrors the current Peripheral Control for endpoints and provides extra security for your servers.
Sophos Wireless provides a simple, effective way to set up and manage your wireless networks. You manage it from Sophos Central and can either use it on its own or as part of a portfolio of Sophos products. Features in this first release include:
Note: Sophos Wireless can be used with all current AP 15, 55 and 100 Access Point models running the latest firmware (indicated by a Sophos Central ready label on the reverse of the AP and on the packaging).
We’ve now added an Audit Log to Sophos Central. This report shows all actions taken by Sophos Central admins and will help IT teams audit admin activity. You can export up to a year’s reports as CSV or PDF. Currently, all admins can access the reports, but access will soon be controlled through admin privileges. Take a look
We’ve enhanced the Update Cache feature so that Windows Servers can update from a local cache. What’s more, the Sophos Central Admin console now lets you see which endpoints update from each cache. More about Update Cache
If you have Sophos Server Protection and appropriate licenses, you can now use Web Control on Windows Servers. This is useful if your end-users can browse the web from a Windows Server, because it lets you restrict access to potentially inappropriate websites. This feature is available in the Server Policy editor. More about Web Control
Sophos Cloud is now Sophos Central! The new Sophos Central Admin console features a streamlined design, enhanced protection, simplified reporting, a robust dashboard and other enhancements. Sophos Central Admin is more powerful and easy to use than ever before.
Click here to watch a short video for more information.
Security Heartbeat and Potentially Unwanted Application (PUA) detection is now enabled for all Mac endpoints.
Try it now for free to gain more comprehensive web security, including SSL scanning, real-time logging, and in-depth reporting.
Note: Web Gateway is currently only available if your Sophos Cloud account uses U.S. or E.U. (Ireland) data storage.
We're providing improved control of scanning exclusions for your guest VMs. Previously, exclusions applied to all guest VMs protected by the same Sophos security VM. You can now exclude folders on specific guest VMs. Read more.
We're phasing out support for Windows XP SP2 and Windows Server 2003 SP1. These computers are still fully protected, but aren't getting product updates. You'll see alerts and your users will see "update failed" messages. Read more.
We've now released Sophos Anti-Virus for vShield, which lets you protect your virtual environment. Install our central scanner on a host to secure all the guest VMs: it's fast and effective, saves resources and simplifies management. Read more.
AD Sync now lets you filter the groups it imports, so that you no longer have to import every group your users belong to. This is in addition to the user filtering we already offer.
Already Use Web Gateway? Add Chromebook devices now from the Sophos Cloud Downloads page.
Not Using Web Gateway? Try it now for free to gain more comprehensive web security, including SSL scanning, real-time logging and in-depth reporting.
Note: Web Gateway is currently only available in the U.S.
Sophos Cloud Web Gateway now supports iOS devices. If you already use Web Gateway, simply go to Downloads to protect new devices. If you're an existing customer but haven't tried it yet, you can have a free trial: go to Account > Administration and click Add Trial License.
Note: Web Gateway is only available in the U.S.
This new feature enables computers to get their Sophos Cloud updates from a cache on one of your servers, rather than directly from Sophos. This saves you bandwidth, as the updates are now downloaded only once, by the server. To get started, go to Global Settings > Manage Update Cache Servers. Read more.
Sophos Mobile Security scans Android phones and tablets for malicious apps and checks whether the devices are rooted. You can also configure it to detect potentially unwanted or low reputation apps and malicious websites. Read more.
Download reputation checking will soon be generally available. This new feature checks each download against a Sophos database and warns you if it has a low reputation. Read more
Application control is now generally available. This feature lets you block applications that you think are unsuitable for use in the office. Read more.
If you took part in the beta, thanks. Be aware that application control settings in policies will now apply to all Windows computers, not just computers you added to the beta.
This new feature enables your computers to send updates about their security health to the Sophos Firewall. The Firewall can then take any action that's needed, such as blocking traffic, depending on its policy settings.
Security Heartbeat also sends alerts to Sophos Cloud if computers might be compromised.
To try it out, go to Account > Beta Programs and join the Beta. Then register your Firewall with Sophos Cloud (you do this at the Firewall console) and go to the Devices page to select computers for the Beta.
From November 1st, 2015, we will no longer support Mac OS X 10.6 and 10.7. Security updates for these Macs may continue for a short time, but when they cease, you'll soon see errors reported in your Sophos Cloud console.
This cloud-based gateway protects your network against risky or inappropriate web browsing. It also has extra features that you don’t get with endpoint-based web protection. For example, it can:
You’ll need a license upgrade. To find out more, click here.
The latest Sophos Cloud beta program lets you try out these new features:
This new feature lets you block applications that are not a security threat but that you think are unsuitable for use in the office. Read more
This new feature checks each download against a Sophos database and warns you if it has a low reputation. Read more
To join the beta program, head to the Account > Beta Programs page.
You can now protect your Linux computers with a Sophos Cloud download (just as you do for Windows and Mac OS X). See the Downloads page.
You can now prevent users from connecting most phones, cameras and media players to workplace computers. Just go to your peripheral control settings and block the MTP/PTP category. Read more
We've made it easy to see the security status of users or devices at a glance. An icon (green, amber or red) next to each of them shows you their security health, and you can click the icon for details. Take a look at your Users and Devices lists.
You can now locate any user’s mobile device and see its location on Google Maps. For this to work, users must have “Locate” enabled on their devices (you can use a compliance rule to ensure this). To try this feature, click on a mobile in your list and look for the Locate button.
Server lockdown is now released. This allows you to prevent unauthorized changes to the software on your servers but automatically allows the updates you need. And it does it without asking you to set up complicated rules. You will be able to upgrade your license soon. You can lock down your servers right away: on the Servers page, click on a server to open its details and look for Lock Down.
The Sophos Cloud console now comes in French, German, Spanish or Japanese, as well as English. Want to change the language? Go to the bottom of the console and click the arrow beside the Language setting.
We've made improvements in alerts and reminders.
Our email alerts now show the name and location of threats detected on the network. They also include a "What to do" section to help you take action.
You will now get email reminders when your license is due for renewal.
We've improved the Active Directory synchronization utility. A new, easy-to-use setup dialog now lets you:
If you have a Server Protection license, you can now try out our new Server Lockdown feature. This prevents unauthorized changes to the software on your servers but automatically allows the updates you need. To take part in the beta program, head over to the Account > Beta Programs page to sign up.
You can now manage Sophos Secure OS for AWS directly from Sophos Cloud. All you need to do is register your Secure OS instance with Sophos Cloud. For more information, see the Downloads page.
Our Server Protection feature is now generally available. This feature:
To get started, install the new feature on servers. Here’s how.
Got servers still protected with the old software? Do this:
Find each server in Users & Devices > Devices. Click the server name to see its details page. Click the Upgrade to Server button in the upper right of the page.
Got new or unprotected servers? Do this:
Go to Downloads > Installers, get the server installer and run it on each server.
Got servers protected with the beta software?
There’s no more to do, unless you have other servers that weren’t included in the beta program.
We’ve made it quicker and easier to handle PUAs. If Sophos Cloud detects a PUA that you want to let all users have, just select the alert in the Action Center and click Authorize PUA(s) .
You can still use policies if you want to authorize PUAs only for specific users or servers.
We’ve moved or renamed some pages to make Sophos Cloud easier to use.
There’s a new Global Settings menu for settings that apply on all computers. We’ve moved two pages to this new menu:
If you’re a beta customer, you’ll also see a new page there:
If you’re a beta customer, you can try our improved handling of PUAs. If Sophos Cloud detects a PUA that you want to let all users have, just select the alert in the Action Center and click Authorize PUA(s) .
You can still use policies if you want to authorize PUAs only for specific users or servers.
You can now sign up for the Cloud version 3 beta program and try our new Server Protection features.
Server Protection lets you:
You don’t even need to worry about excluding Microsoft Exchange, Active Directory and Microsoft SQL Server from scanning, as we do that automatically. Sophos Cloud will work on your servers "out of the box".
To join the beta, head on over to the Accounts > Beta Programs page.
We'll phase in all these new features and enhancements over the next few weeks:
You'll be able to add users and get their devices protected all on the same page.
The improved Users & Devices > Users page will let you send startup links to new or existing users, so that they can install Sophos software on their computers or mobiles. You'll no longer need to visit a separate Email Deployment page.
If Sophos Cloud detects Potentially Unwanted Applications (PUAs) on computers, you'll be able to clean them up from the Dashboard in most cases. Just look out for the Cleanup PUA button that appears in the Action Center pane when you need it. This feature is available for all customers right now.
You'll be able to scan any computer for threats immediately. On the Users & Devices > Devices page, you'll be able to click on a computer name to open its details page and then click the Scan now button. Any alerts will show up in the Action Center as usual.
The Reports > Events page will have a clearer layout and let you customize your events list to show any combination of event types you want.
You’ll soon be able to try out our beta software for Windows servers. This lets you manage servers separately from other computers and apply security policies that are specific to a server, no matter which user is logged on. You don’t even need to worry about excluding Microsoft Exchange, Active Directory and Microsoft SQL Server from scanning, as we do that automatically. Sophos Cloud will work on your servers “out of the box”.
We've now added Mobile Control for Android devices. This gives you the same control and protection features that you already enjoy for iOS: