Search
  • Ashley McGough

SonicWall Capture Advanced Threat Prevention Solution earns 100%!

Updated: Sep 13, 2021



The verdict is in! SonicWall Capture Advanced Threat Prevention (ATP) earns a perfect score, with zero false positives on the independent ICSA Labs Advanced Threat Defense test.


This is SonicWall’s fifth ICSA Labs Advanced Threat Defense Certification testing report for SonicWall Capture Advanced Threat Protection (ATP). Standard ICSA Labs Advanced Threat Defense (ATD) testing is aimed at vendor solutions designed to detect new threats that other traditional security products miss. Thus, the focus is on how effectively vendor ATD solutions detect these unknown and little-known threats while minimizing false positives.


During 35 days of testing during the first quarter of 2021, ICSA Labs tested the detection capabilities of SonicWall’s advanced threat defense solution, SonicWall Capture Advanced Threat Protection (ATP), with a mix of 1,471 test runs. The mix was primarily composed of new and little-known malicious threats – i.e., recently harvested threats not detected by traditional security products.


SonicWall Capture ATP passed, having met all criteria requirements. As seen in Figure 1 below, SonicWall Capture ATP did remarkably well during this test cycle - detecting 100% of previously unknown threats while having zero false positives. Figures 2 and 3 below further highlight the solution’s detection effectiveness and false positives (FPs).



The Advanced Protection You Need, Where You Need It




SonicWall Capture ATP is a cloud-based, multi-engine sandbox that revolutionizes advanced threat detection. Included with Capture ATP, SonicWall’s patented Real-Time Deep Memory Inspection™ (RTDMI) blocks zero-day and unknown threats at the gateway — even those that hide via encryption or don’t exhibit malicious behavior.


SonicWall Capture ATP scans a broad range of file types to prevent zero-day attacks, targeted malware, advanced ransomware and more. Capture ATP analyzes behavior in a multi-engine sandbox platform that includes full system emulation, hypervisor-level analysis, virtualized sandboxing and RTDMI™, which uses real-time, memory-based inspection techniques to force malware to reveal its weaponry into memory.


By giving admins the ability to block until verdict, create customized policies and scan select files in the cloud, SonicWall Capture ATP combines the efficiency of automation with greater flexibility and control.




18 views0 comments