Organizations should defend their networks and believe that their first line of protection can cease subtle threats. By choosing a firewall built-in with present, international menace intelligence, organizations can rapidly establish and block each superior assaults and exploits of widespread vulnerabilities. Enter Cisco Safe Firewall 4225, which demonstrated distinctive efficiency in SE Labs’ rigorous Superior Safety Check, scoring 100% in safety accuracy.
Rapidly detect and cease assaults
SE Labs tried a full breach the place testers simulated assaults orchestrated by infamous hacking teams like APT29 and Scattered Spider. These teams are identified for his or her relentless and complex assault methods, typically concentrating on high-profile sectors corresponding to authorities, navy, and telecommunications. Testers tried to maneuver throughout the assault chain to steal delicate data, injury programs, or transfer laterally and connect with different community programs.
In all circumstances with Cisco Safe Firewall, threats couldn’t transfer past the earliest stage of the assault chain. It detected and neutralized all simulated threats earlier than they may execute any malicious actions or trigger hurt, leading to 100% safety accuracy. This rating was achieved with TLS decryption enabled, demonstrating the highly effective efficacy of our industry-leading decryption capabilities that enhance safety with out compromising efficiency. As a result of testers had no visibility into their goal to probe for vulnerabilities, they may not use the goal as a launch pad for lateral motion.
In all circumstances with Cisco Safe Firewall, threats couldn’t transfer past the earliest stage of the assault chain.
Award-winning menace detection
To attain 100% safety accuracy, Safe Firewall was scored in keeping with a factors system that counted its capacity to detect and block each assault with optimum effectivity. For instance, throughout testing, if malware runs on the goal (even for a short while) earlier than it’s detected and blocked, the safety accuracy rating drops.
Benign information had been interspersed with threats to measure false constructive charges, an indicator of how nicely a vendor has tuned its detection engine. Out of 75 samples, 74 had been precisely recognized as benign. With three categorized as unknown, and in keeping with SE Labs’ weighting system, Safe Firewall achieved a ranking of 91%.
The firewall’s spectacular Whole Accuracy Ranking of 95% earned it the celebrated AAA award from SE Labs. This report follows our latest Finest Subsequent Era Firewall Award from SE Labs for Cisco Safe Firewall, our second 12 months in a row receiving this wonderful recognition.
Balancing safety with enterprise continuity
Cisco has spent the previous couple of years growing and optimizing firewall capabilities for an encrypted world. Our Discipline Programmable Gate Array (FPGA) part implements an industry-first circulate offload engine to decrypt and encrypt TLS site visitors in {hardware}.
For TLS classes that can’t be decrypted, Cisco provides one other layer of safety with its Encrypted Visibility Engine (EVE). EVE leverages behavioral analytics and machine studying to detect malicious outbound communications even inside encrypted site visitors. Our clients see worth in these improvements as a result of they will implement safety finest practices for encrypted site visitors whereas guaranteeing operational effectivity.
A proactive method to stopping threats
Fortified by the intelligence of Cisco Talos, one of many largest business menace intelligence groups on this planet, Cisco Safe Firewall stays forward of recent threats. Talos identifies rising threats and vulnerabilities, then integrates these findings into Cisco merchandise like Safe Firewall.
With Snort 3 and ClamAV detection engines from Talos, Safe Firewall can flag malicious domains, IPs, and file hashes, offering crucial intelligence to safety controls. Talos’ fame instruments permit Safe Firewall to detect model spoofing, malicious senders, and establish phishing campaigns or malware.
Additional enhancing the efficacy of Cisco’s firewall, Talos now affords SnortML, a menace detection engine designed to proactively establish zero-day vulnerabilities. The system finds patterns in widespread vulnerability varieties which can be typically utilized by menace actors for preliminary entry: command injection, code injection, and SQL injection. SnortML identifies when payloads match a selected vulnerability class, even when there are variations (which beforehand would have categorized it as a zero-day assault).
View the SE Labs Report
Cisco Safe Firewall is among the enforcement factors of Cisco’s Hybrid Mesh Firewall, a extremely distributed safety cloth with clever centralized administration that makes it straightforward for organizations to guard their purposes wherever they dwell. For an in-depth take a look at the real-world threats and ways our firewall was examined towards, discover the report.
Expertise our firewall in motion
Need to give it a strive? Be a part of the Cisco Safe Firewall Check Drive, an instructor-led 4-hour safety course, permitting you to realize firsthand expertise with Cisco firewalls, and uncover the brand new strategies of attackers which have modified the community safety wants.
We’d love to listen to what you assume. Ask a Query, Remark Beneath, and Keep Linked with Cisco Safe on social!
Cisco Safety Social Channels
Share:
