Sophos acquires Capsule8 security platform for Linux server

By Amirtha P S, Desk Reporter
  • Follow author on
Representational image

Sophos, a global leader in next-generation cybersecurity, has acquired Capsule8, a market leader of runtime visibility, detection and response for Linux production servers and containers covering on-premise and cloud workloads, for an unknown amount.

The acquisition will see Sophos integrate Capsule8 technology, which is aimed at Linux cybersecurity, to its Adaptive Cybersecurity Ecosystem to provide Linux server and cloud container security later in the fiscal year. 

Dan Schiappa
Dan Schiappa
Chief Product Officer Sophos

“Comprehensive server protection is a crucial component of any effective cybersecurity strategy that organizations of all sizes are increasingly focused on, especially as more workloads move to the cloud. With Capsule8, Sophos is delivering advanced, differentiated solutions to protect server environments, and expanding its position as a leading global cybersecurity provider.”

Capsule8 is dedicated solely to the development of Linux security and has established itself as a technology. Capsule8’s high-performance, low-impact design is ideal for Linux servers, especially those used for high-scale workloads, production infrastructure and storing critical business data.

By acquiring Capsule8’s Linux cybersecurity technology, Sophos claims it will be able to provide improved protection against hackers using tactics, techniques and procedures (TTP) that specifically target Linux systems, which typically go after server software exploits, according to its research arm SophosLabs. 

“Attackers today are incredibly aggressive and nimble as they adapt their TTP to focus on the easiest, largest or fastest-growing opportunities. As more organizations shift to Linux servers, adversaries have noticed, and they are adapting and customizing their approaches to attack these systems,” said Mr. Schiappa.

To ensure maximum protection, the organizations must factor in a strong, but a lightweight layer of Linux security that automatically integrates and shares intelligence with endpoint, network and other security layers and platforms within an estate. “We will provide this industry-leading capability and strategically important visibility and detection by combining Capsule8 with our Adaptive Cybersecurity Ecosystem products and services,” Mr. Schiappa added.

Sophos is integrating Capsule8 technology into its recently launched Adaptive Cybersecurity Ecosystem (ACE). It will also feature Capsule8 technology in its Extended Detection and Response (XDR) solutions, Intercept X server protection products, and Sophos Managed Threat Response (MTR) and Rapid Response services. This will improve Sophos’ data lake and deliver continuous, fresh intelligence for advanced threat hunting, security operations and customer protection practices.

“Capsule8 is the premiere purpose-built detection and response platform for Linux. We provide security teams with the crucial visibility they need to protect Linux production infrastructure against unwanted behavior, while at the same time addressing cost, performance and reliability concerns. We’ve innovated new approaches to deliver runtime security in a much safer and more cost-effective way than anyone else in the industry. With Capsule8’s technology, organizations are no longer forced to choose between system stability and security risk” said Mr. John Viega, CEO of Capsule8.

Related: UAE reaffirms its commitment to strengthen cybersecurity