Organizations should defend their networks and believe that their first line of protection can cease subtle threats. By deciding on a firewall built-in with present, international menace intelligence, organizations can rapidly determine and block each superior assaults and exploits of frequent vulnerabilities. Enter Cisco Safe Firewall 4225, which demonstrated distinctive efficiency in SE Labs’ rigorous Superior Safety Check, scoring 100% in safety accuracy.
Shortly detect and cease assaults
SE Labs tried a full breach the place testers simulated assaults orchestrated by infamous hacking teams like APT29 and Scattered Spider. These teams are recognized for his or her relentless and complicated assault methods, typically focusing on high-profile sectors resembling authorities, navy, and telecommunications. Testers tried to maneuver throughout the assault chain to steal delicate info, injury techniques, or transfer laterally and hook up with different community techniques.
In all instances with Cisco Safe Firewall, threats couldn’t transfer past the earliest stage of the assault chain. It detected and neutralized all simulated threats earlier than they might execute any malicious actions or trigger hurt, leading to 100% safety accuracy. This rating was achieved with TLS decryption enabled, demonstrating the highly effective efficacy of our industry-leading decryption capabilities that enhance safety with out compromising efficiency. As a result of testers had no visibility into their goal to probe for vulnerabilities, they might not use the goal as a launch pad for lateral motion.
In all instances with Cisco Safe Firewall, threats couldn’t transfer past the earliest stage of the assault chain.
Award-winning menace detection
To attain 100% safety accuracy, Safe Firewall was scored based on a factors system that counted its skill to detect and block each assault with optimum effectivity. For instance, throughout testing, if malware runs on the goal (even for a short while) earlier than it’s detected and blocked, the safety accuracy rating drops.
Benign recordsdata had been interspersed with threats to measure false optimistic charges, an indicator of how effectively a vendor has tuned its detection engine. Out of 75 samples, 74 had been precisely recognized as benign. With three categorized as unknown, and based on SE Labs’ weighting system, Safe Firewall achieved a score of 91%.
The firewall’s spectacular Whole Accuracy Ranking of 95% earned it the celebrated AAA award from SE Labs. This report follows our latest Finest Subsequent Technology Firewall Award from SE Labs for Cisco Safe Firewall, our second yr in a row receiving this glorious recognition.
Balancing safety with enterprise continuity
Cisco has spent the previous couple of years growing and optimizing firewall capabilities for an encrypted world. Our Discipline Programmable Gate Array (FPGA) part implements an industry-first circulation offload engine to decrypt and encrypt TLS site visitors in {hardware}.
For TLS periods that can’t be decrypted, Cisco provides one other layer of safety with its Encrypted Visibility Engine (EVE). EVE leverages behavioral analytics and machine studying to detect malicious outbound communications even inside encrypted site visitors. Our prospects see worth in these improvements as a result of they will implement safety finest practices for encrypted site visitors whereas making certain operational effectivity.
A proactive strategy to stopping threats
Fortified by the intelligence of Cisco Talos, one of many largest industrial menace intelligence groups on this planet, Cisco Safe Firewall stays forward of recent threats. Talos identifies rising threats and vulnerabilities, then integrates these findings into Cisco merchandise like Safe Firewall.
With Snort 3 and ClamAV detection engines from Talos, Safe Firewall can flag malicious domains, IPs, and file hashes, offering essential intelligence to safety controls. Talos’ popularity instruments enable Safe Firewall to detect model spoofing, malicious senders, and determine phishing campaigns or malware.
Additional enhancing the efficacy of Cisco’s firewall, Talos now presents SnortML, a menace detection engine designed to proactively determine zero-day vulnerabilities. The system finds patterns in frequent vulnerability varieties which might be typically utilized by menace actors for preliminary entry: command injection, code injection, and SQL injection. SnortML identifies when payloads match a specific vulnerability class, even when there are variations (which beforehand would have categorized it as a zero-day assault).
View the SE Labs Report
Cisco Safe Firewall is without doubt one of the enforcement factors of Cisco’s Hybrid Mesh Firewall, a extremely distributed safety cloth with clever centralized administration that makes it straightforward for organizations to guard their purposes wherever they stay. For an in-depth have a look at the real-world threats and ways our firewall was examined towards, discover the report.
Expertise our firewall in motion
Wish to give it a strive? Be a part of the Cisco Safe Firewall Check Drive, an instructor-led 4-hour safety course, permitting you to achieve firsthand expertise with Cisco firewalls, and uncover the brand new strategies of attackers which have modified the community safety wants.
We’d love to listen to what you suppose. Ask a Query, Remark Beneath, and Keep Related with Cisco Safe on social!
Cisco Safety Social Channels
Share: