A Cutting-Edge Next Generation Firewall

Sangfor NGAF takes innovation to the next level to meet the evolving security needs of modern enterprises. Through market foresight and technical prowess, Sangfor NGAF is the next generation firewall that holds several "world's first" titles.

  • The world's 1st AI-enabled NGFW that intelligently detects threats to eliminate over 99% of external threats at the network perimeter.
  • The world's 1st NGFW integrated with Web Application Firewall to provide network and web application security in one appliance.
  • The world's 1st NGFW built-in SOC Lite that helps security teams quickly determine the security status and respond.  
  • The world's 1st NGFW that truly integrates with endpoint and network security solutions to create a holistic security system.
Click Here to Watch the Video
Click Here to Watch the Video

Features & Capabilities

Malware Detection

Sangfor's NGFW integrates with Engine Zero, an AI powered real time Malware Detection Engine.

Engine Zero is developed using Machine Learning models and AI algorithms. This enables NGAF to deliver 99.76% detection rate of known and unknown malware across the internet. Your entire organize stays protected because of Engine Zero's powerful capabilities.

Threat Intelligence

Sangfor's NGFW integrates with Neural-X, a cloud based AI powered threat intelligence and analytics platform.

For example, NGAF can send a suspicious DNS address to Neural-X for verification. If Neural-X classifies this DNS as a known C&C server, Sangfor NGAF automatically blocks these communications so that no further damage is caused. The Neural-X data is constantly updated to protect against latest Tactics, Techniques and Procedures (TTPs)

Web Application Firewall (WAF)

Sangfor's NGFW is integrated with Sangfor WAF, a next generation application firewall designed to offer robust protection to web applications.

Using semantic analysis and the industry’s first WAF with a built-in virtual execution system (VES), Sangfor WAF protects web applications from the most advanced web application attacks, such as SQL injection and cross-site scripting.

SOC Lite

Sangfor believes the firewall should make the security admin's life easier. Sangfor's NGFW integrates SOC (Security Operations Center) Lite features to simplify security operations and response.

Instead of analyzing tons of security logs, security admin can intuitively determine the current threat level of users and servers via NGAF GUI. What's more, NGAF provides the essential guide to respond via GUI.

Anti-Ransomware

Sangfor's NGFW offers native synergy with Sangfor Endpoint Secure (Endpoint Detection and Response - EDR). Forensic the threat intelligence data collected from the network and endpoint, visualize the hidden malicious process via GUI and provide "one-click quarantine" to eliminate the threat.

Application Containment

Sangfor's NGFW is one of the key components of Application Containment solution.

Network administrators can have total control on any of the unauthorised applications running on any endpoint devices. You can configure application control policies on Next Generation Firewall. These policies prevent running of any malicious applications running on the network. You have the total control in your hand.

NGAF Use Cases

Robust Perimeter Security

Robust Perimeter Security

Sangfor NGAF is a next generation firewall built in with various security features and capabilities, including antivirus, intrusion prevention, and application control. Additional integration with an AI-powered malware detection engine and real-time threat intelligence platform ensures that Sangfor NGAF blocks over 99% of threats at the perimeter.

Ransomware protection

Ransomware protection

For organizations seeking protection against the most sophisticated and destructive cyber threats like ransomware, Sangfor NGAF is the essential cog that integrates with other Sangfor security products protecting every step of the Ransomware kill chain.

Web Application Security

Web Application Security

Protect the company’s web applications by filtering, monitoring, and blocking malicious HTTP traffic to defend against attacks such as SQL injection, cross-site-scripting (XSS), and file inclusion. A WAF is most suited for companies that provide internet-facing products and services, such as an e-commerce site and online financial services.

Secured SD-WAN & WFX

Secured SD-WAN & WFX

Sangfor NGAF utilizes IPsec VPN, SSL VPN together with enterprise-level protection. Secure your access in HQ-to-branch, branch-to-branch & WFX scenarios.

Awards & Achievements

Gartner Magic Quadrant

"Visionary" Vendor

Rcognized as "Visionary" vendor in 2021 Gartner Magic Quadrant for Network Firewalls

Gartner ‘Voice of the Customer’ icon

Gartner ‘Voice of the Customer’

Sangfor NGAF Customers Speak through Gartner® Peer Insights™

ICSA Labs Certification icon

ICSA Labs Certification

Tested and Proven for Total Security: Sangfor NGAF Endorsed by ICSA Labs in 2021

AAA Rating from CyberRatings icon

AAA Rating from CyberRatings

Sangfor NGAF Receives AAA Rating from CyberRatings

Cybersecurity Excellence Awards icon

Cybersecurity Excellence Awards

Sangfor recognized by the 2022 Cybersecurity Excellence Awards

Customer Testimonials

image peer

Sangfor NGFW Is Nothing Less Than No.1 As IT Security Protection

IT Manager of an Automative Industry

image peer

Quick Deployment, Easy To Use, And Practical Reports, Need More About Data Details

COO of a Media and Publishing Industry

image peer

Simple Operation And Maintenance, Rich Functions

Marketing Manager of IT Industry

image peer

Human-Machine Intelligence-Data Fusion Comprehensively Guarantees Safe Operation

CIO of a Industrial Company

image peer

Product Performance Very Good

Assistant IT officer from a Federal Government

Success Stories with NGAF

Below you will find all the Success Stories of Sangfor, classified by Industry, such as Enterprises, Governments, Schools & Universities, etc.

venine cable logo

Manufacturing & Natural Resources

Venine Cable

Sripatum University SPU logo

Education

Sripatum University (SPU)

Bank Victoria

Banking & Securities

Bank Victoria International

Mitra Keluarga logo

Healthcare Providers

Mitra Keluarga Hospital

venine cable logo

Venine Cable

Sripatum University SPU logo

Sripatum University (SPU)

Bank Victoria

Bank Victoria International

Mitra Keluarga logo

Mitra Keluarga Hospital

Videos

PT Bank Victoria International Tbk x Sangfor: Success Story

video-image
PT Bank Victoria International Tbk x Sangfor: Success Story
video-image
Customer Testimonial – Royal Malaysian Customs Department x Sangfor NGAF Next-Generation Firewall
video-image
Cyber Command Correlates with NGAF to Automatically Deal with Network Threats
video-image
Saint Louis University (SLU) Advancing Through Digital Transformation
video-image
Guy Rosefelt Interview with Cyber Defense Magazine 2022
video-image
Interview with Tun Lin Khaing from Sweety Home Myanmar
video-image
Sangfor NGAF Animation Video
video-image
Testimonial NGAF Ministry of Industry - With En Subtitle

Get in Touch With Us

icon notification

Latest Blog

latsest webinars img
Cyber Security

Black Friday and Cyber Monday 2022: Will Ransomware Break Records?

Black Friday has been a coveted and anticipated event in retail for years – boasting low prices for most products and wildly sought sales across stores both online and in real life. The event comes at the end of the year on the 25th of November - a month before Christmas and is used as a way for stores to attract the rush of festive season shoppers. Black Friday sales are complemented by the equally sought Cyber Monday deals that lean more towards virtual sale items online – ensuring that the rat race to the bottom of a cart carries on for whole weeks with some companies. This year will be no different as most people are now fully out of the pandemic hesitation and are ready to rush the shopping centers and online stores alike to seek out the lowest prices. While people are focusing on keeping their trolleys full, cybercriminals are also anticipating this retail extravaganza with bated breath. Black Friday and Cyber Monday present hackers with an easy mark as they also rush to exploit human gullibility and carry out a barrage of ransomware and other cyber-attacks. Black Friday and Cyber Monday as a Cyber Threat With the spike of purchases taking place on Black Friday and Cyber Monday, many people will likely fall prey to illegitimate emails of promotions and online scams while in search of legitimate retail sales. Ransomware attacks are focused on exfiltrating data from networks and holding the encrypted information hostage until a company or person pays a ransom to have the data decrypted and given back. With the invitation of numerous promotional initiatives during Black Friday and Cyber Monday, it's not difficult to see how these retail events can pose as significant ransomware attack vectors. Online Shopping The upcoming festive season drives people to endure long lines and crowded stores for the sake of Black Friday sales and the e-commerce industry has taken some of that pressure off people. Cyber Monday was initially the day set aside for virtual sales but retailers have also moved most Black Friday deals onto online platforms as well – widening the scope of online shopping. Online stores have become a convenient and trusted way to make purchases across the globe – with retailers such as Amazon.com leading the global e-commerce market, with a revenue of US$131,019 million in 2021, and Jd.com coming in second at the forefront of the Chinese market, with net sales of US$117,922 million. Unfortunately, this useful portal is also ideal for hackers to exploit the lax attitude people have toward sharing their financial and personal credentials to reach lower prices. Opportunistic hackers will take advantage of the desperation in this window through promotional phishing emails and online scams that exfiltrate consumers’ data. Cryptocurrency Black Friday similarly presents cryptocurrency users with exclusive incentives in which products bought using digital currency will incur a price reduction. The coined “Bitcoin Black Friday” encourages merchants to use their bitcoin to make purchases and even invest in more crypto. Crypto is also the preferred currency for ransomware attackers due to its virtual standing and potential for anonymity. Hackers may use this to lure in users and the existing cybersecurity flaws within the industry make it easier to exploit. Metaverse Shopping The metaverse is a virtual reality that can be used to interact with other humans and bots to play games, conduct business, socialize, and shop. A relatively new technology that allows users to navigate a virtual environment through their avatars using immersive gadgets. The metaverse shopping experience allows users to shop and even interact with salespeople from the comfort of their homes. As with all innovative technologies, the metaverse is not immune to cyber-attacks and inadequate cybersecurity measures on personal networks could lead to data breaches and ransomware attacks. Companies Reducing Staff for Festive Seasons As the year ends, most companies ease up on their cybersecurity measures and operate on a skeleton staff setup. Employees start to take their festive season vacation time and generally, the atmosphere is less rigid. Hackers, however, don’t always commit to the seasonal spirit and will use this window as a key vulnerability to exploit. Especially, Thanksgiving, Black Friday, Cyber Monday and Christmas Holidays are lined up, it takes a hug risk for companies ignoring cyber threats. With a reduced staff and a majority of IT security teams unavailable, cyber-attacks run rampant during this time of the year. Companies should invest in automated cybersecurity solutions to avoid these sneak attacks and mitigate any threats encountered without needing a strong staff present. Sangfor’s Cyber Command platform provides an extensive and automated network detection and response solution with the use of AI technology and machine learning to help networks isolate, analyze, and eliminate potential threats before they can infiltrate your system. Sangfor's Endpoint Secure - Endpoint Security delivers end-to-end protection to secure endpoints before, during, and after attacks. It provides integrated protection against malware infections and APT breaches across your entire organization's network – all with ease of management, operation, and maintenance. The platform also received the AV-TEST “Top Product” award for achieving 100% ransomware protection against zero-day malware. Ransomware Attacks on Black Friday and Cyber Monday Ransomware attacks are focused on exfiltrating data from networks and holding the encrypted information hostage until a company or person pays a ransom to have the data decrypted and given back. With the invitation of numerous promotional initiatives during Black Friday and Cyber Monday, it's not difficult to see how these retail events can pose as significant ransomware attack vectors. Consumers and corporations alike need to understand the ways ransomware attacks can occur and how to mitigate the damage they cause. Some of the most commonly used attack methods include: Phishing Attacks A phishing scam captures its victims by appearing as legitimate communication received from trustworthy organizations and sources. The correspondence usually contains a simple corrupted email link which can open the floodgates for any number of malware. A phishing email may be sent out to multiple people at once in the hopes that even just one person falls for the trap. In contrast, spear phishing is more targeted in its approach and baits specific vulnerable individuals. It is more effective and harder to detect. These methods are used during peak promotional periods when legitimate retailers may be sending out emails about their Black Friday deals, phishing scams will likely also crowd up your inbox. Be vigilant about which links you click on and where you provide your details. Malware Threats Malicious software programs infect your device through viruses, trojan horses, and worms, which can all easily hack into your system – allowing criminals to steal your personal information, destroy data or hold your files for ransom. Corrupted Web Pages Ransomware code can also be hidden in web scripts of compromised websites. This is a perfect attack vector when consumers engage with online stores in a hurry and don’t ascertain the credibility of the store before entering their personal and financial details. When an individual visits the corrupted site, the malicious code is automatically downloaded, and once executed can infect the user’s entire infrastructure – moving laterally across the network to encrypt data. Pop-up Ads Pop-up advertisements can be very annoying but we usually skim over them anyway, Black Friday deals tend to catch the eye quicker this time of the year and can trick people into clicking on them by posing as trusted brands with seemingly legitimate sales. After clicking on the pop-up, users are directed to a new window with malicious links or automatically download the ransomware onto their device. Black Friday ransomware attack threats force companies and individuals to take a close look at cyber practices and how to improve their digital hygiene habits to ensure they don’t fall prey to a hacker. Companies must note that their network may come under fire from their employee’s cyber practices as well. This is especially due to most working environments being remote – a neglectful worker might click on a link on their personal device at home while shopping and present any number of malware a foot into your organization’s network. Even as we’re reaching the end of November, the lessons from Cybersecurity Awareness Month should be kept in mind as we chase down those seasonal savings. As the US campaign enforced, it is the duty of companies and ordinary people alike to engage with and establish lasting cybersecurity practices. For more information on Sangfor’s cyber security and cloud computing solutions, visit www.sangfor.com.   Contact Us for Business Inquiry


Cyber Security

National Cybersecurity Strategy Launched: the Italian Breakthrough in Cybersecurity

As many people know, cyber security is the set of processes, technologies, and people involved in protecting the IT infrastructure of a business or organization from cyber-attacks. For about 50 years, viruses have spread to PCs and organizations, causing damage, sometimes irreparable. The first virus spread was Creeper, in 1971, when there was still Arpanet, the precursor of the Internet, and it is thanks to this occurrence that it was also inaugurated the first antivirus software to hunt and delete it, Reaper. In the 80s the first security solutions were designed, but only in the 90' years were created the first antivirus scanners created. With this simple data we can easily understand how long viruses have been running in networks and some may take it for granted that people have been worried about security for many years. But it’s not like that. Cybersecurity in Italy In fact, the Italian market has never worried enough about cyber security, it has never been given the right importance. Most organizations have always thought that antivirus is enough to protect their assets: maybe before it was right to think in this way, but today’s antivirus is no longer enough to ensure adequate protection of their business. The real boom occurred in 2021, after the advent of the pandemic Covid-19. One of the most obvious consequences of the pandemic was the new trend of hybrid working, which, while it was able to safeguard people’s health, gave space to other threats. Faced with the spread of these new ways of working, cyber-attacks have also increased. More and more companies considered it necessary to strengthen staff awareness initiatives on how to behave about cyber threats. In 2021, the Italian cybersecurity market reached a value of 1.55 billion euros, with a 13% increase compared to 2020, highlighting the high growth rate. The bigger organizations immediately work to prevent cyber threats and planned an increase in the budget for cyber security activities. Italy has started to invest, but not enough. It should be noted that cyber attackers not only hit the "big ones" but also the small ones, which often find themselves in even more difficulties when they have to pay ransoms or solve the damage received. Check out some interesting statistics from 2022-2022 (Source: Comparetech). Over 85% of Italian organizations were subject to at least one successful attack within a 12-month period 60% of organizations in Italy dealt with ransomware attacks The average cost of a ransomware attack in Italy was around $680,000 Italy has seen over 400,000 COVID-19 related malicious files The 2 Major Pillars In 2022 there are 2 major pillars that are making cyber security a business priority, in addition to the constant increase in cyber threats: the extreme digitization of the population and the ongoing rules. Increasing Digitalization There is a real increase in attacks due to increasing digitalization. The link between digitized life and cybersecurity is becoming ever closer. According to the Primo Rapporto Censis-DeepCyber sul valore della cybersecurity, 61.6% of Italians are concerned about their cybersecurity and take precautions to defend themselves; Almost 4 out of 10 Italians are indifferent or do not protect themselves against cyber-attacks. The same report also reveals that 64.6% of Italians happened to find themselves the target of deceptive emails aimed at extorting sensitive personal information and that 44.9% saw their computer infected with a virus. The research also investigated the context of cyber risks for companies and workers, revealing that 19.5% experienced cyber-attacks with damage to social accounts or the site of their company and 14.7% of attacks have caused the loss of business data and information. The Launch of National Cybersecurity Strategy In terms of the regulatory front, regulatory activities are in place. In Italy the "National Cybersecurity Strategy" has been launched by the National Cybersecurity Agency (NCA), stating that the country will devote 1.2% of gross national investment a year to cybersecurity. This is a fundamental step that looks at the present and, above all, the future. And it is precisely on this front that a cross can occur between the application of the rules in the field of cyber and the rules on the protection of personal data. There are also numerous funds earmarked to encourage the digitization of businesses and the protection of their business.  About Sangfor We have to protect ourselves from malware, ransomware, phishing, sniffing, and other common techniques of use. Sangfor Technologies is a leading global vendor that can help Italian and worldwide organizations to protect themselves from cyber-attacks. A wide range of integrated cyber security solutions that can help protect your business and defend it in real time against cyber threats.  Some of Sangfor's cybersecurity solutions are:  Sangfor Cyber Command - NDR Platform, AI-based cyber threat detection and automatic response platform  Sangfor NGAF - Next Generation Firewall, the next-generation firewall for a holistic view of the organizational network Sangfor Internet Access Gateway (IAG), the simplified network and user management solution Sangfor Endpoint Secure - Endpoint Security, which provides a holistic response to malware infections and APT breaches across the organization’s entire network   Contact Us for Business Inquiry


Cyber Security

Surviving the Recession Era: What IT and Cyber security Preparation Do Organizations Need

The recession news has been spreading worldwide, asking us to prepare ourselves better to face it. Every individual began to compete to prepare themselves in the face of the financial crisis that is expected to occur in the next year. Just as personal preparation is needed in the face of an economic slowdown, preparation of every company where special strategies are needed in dealing with the impending recession. The existence of a revolution or change that will occur during a recession is feared to have quite an impact on everyone's life. Not only that, companies and individuals are also required to install more advanced high-level security systems to protect personal and corporate data from facing  more serious threats during times of economic slowdown. Reporting from a recent publicationnof Which Industries Are Most Affected by a Recession, several industries that were affected by the recession during the Covid-19 period are: Retail Restaurant Travel and Tourism Leisure and Hospitality Service Purveyors Real Estate Manufacturing and Warehouse Then what is the possibility of good or bad from the financial crisis we might face? One of the worst possibilities that can happen is that corporate leaders will be using cost-down strategies when it comes to weak buying and selling power and declining demand. This does not rule out the possibility of reducing human resources and replacing them with Artificial Intelligence or existing sophisticated machines. Followed by the good possibility, that is, as an effect of this cost-down and low buying and selling power, it is possible that we will certainly enter the digitalization era rapidly and it is assumed that we will recover faster. It doesn't necessarily matter how good or bad the result is, we have to face it with the best possible preparation right? Prepare for a Recession So, what kind of preparation do we need? Let's dig into the 3 points that might happen and how to be prepared for it. Budget Cutting / Cost Down This strategy is certainly the most elected strategy by many companies. It is not difficult to explain that IT needs can consume a large amount of funds. Especially for large industries such as manufacturing, government and healthcare. Start by grouping the IT needs and creating the roadmap for your business and then, consider reducing the needs that are cost-intensive yet yield low results. One such instance is the use of space for hardware which utilizes a significant portion of space, and thus driving up the costs. By switching to cloud computing, you can save not only space but also costs with high accessibility. For example, by deploying Sangfor Hyper-Converged Infrastructure, organizations can save 90% in power, cooling, and space requirements, reducing at least 70% on the Total Cost of Ownership.   Improve On-demand Security with Less Resources With the entry of the recession era, it is assumed that crime also continues to increase daily. Tons of cybercrime and malware out there are haunting us every day (no kidding!). The banking sector is certainly the most targeted in this case. Starting from phishing methods, social engineering, and even identity theft and many more. Choosing the right security product for your business, which can provide 24/7 up-to-date protection with low resources and simple operation is on your list now. It will certainly make your job or business easier and more secure. Sangfor Next Generation Firewall (NGFW) is the world's 1st AI-enabled NGFW that intelligently detects threats to eliminate over 99% of external threats at the network perimeter. It is used in conjunction with Endpoint Security to identify malicious files at both the network level and endpoints. The advanced firewall is a security device designed to inspect network and application traffic for threats, secure the network environment from intrusion, and bring in security intelligence from outside the network. Change of Environment and Mindset We all must prepare ourselves for the upcoming environmental changes. Again, this may not be a bad thing. Entering the era of digitalization has been predicted. Starting from the creation of the Metaverse virtual world, to the sophistication of Artificial Intelligence and much more. Surely this makes you not only compete with living things (humans) but also compete for positions with sophisticated machines that were created, right? Now, we can get any information very easily simply in our hands. Prepare yourself to face the digitalization era by maximizing internet usage and bandwidth control in your business, especially for Government, Education or even Manufacture sector. Implementing or limiting internet accessibility can help your business operation to be more focused, and productive with better results. Organizations can deploy Sangfor Internet Access Gateway, which not only protects against common threats but also observes internet access for any suspicious behavior to safeguard user internet access behavior. The most important thing is to have a product or IT vendor that fits your main and greatest needs. What's the biggest IT concern and priority in your businesses? About Sangfor Technologies Sangfor Technologies is one of the leading vendors of Security and IT infrastructure, equipped with advanced technology and proven efficiency, providing convenience with a competitive budget and prioritizing the best experience for its users. Sangfor not only has security services that can protect you from cyber-attacks and malware 24/7, but also with its 3rd Generation Hyper-Converged Infrastructure as a trusted private cloud, can help your business operate more efficiently, and flexibly with a high level of security. Make your business simpler and more secure with Sangfor Technologies.   Contact Us for Business Inquiry


Latest News

latest news img
News

Sangfor Recognized by Gartner® as a Sample Vendor in Emerging Tech Impact Radar: Security

Sangfor Recognized as a Sample Vendor for Two Technologies We are excited to announce that Sangfor has been recognized as a Sample Vendor for two security technologies in the Gartner Emerging Tech Impact Radar: Security, published November 16, 2022.[1] The two technologies Sangfor is recognized for are: AI-Based Security Operations Deception as a Feature About the Emerging Tech Impact Radar: Security  Emerging Tech Impact Radar: Security is a piece of Gartner research that “aims to track some of the more impactful emerging technologies and trends driving innovation in the security market.” This Impact Radar analyzes 27 emerging security technologies and trends, which are then scored on two significant aspects: Range: when the technology is expected to have a significant impact on the market. Mass: how big an impact the technology will have on relevant markets. We believe that this Gartner research helps IT security managers gain a deeper understanding of emerging technologies and trends in the security market. Based on each technology’s Range and Mass as observed by Gartner, IT security managers can assess the value of each technology to their organization and time investments according to their organization’s needs.  About Sangfor’s Recognized Technologies  AI-Based Security Operations   Range: 1-3 years Description: “AI-based security operations will be leveraged for post-detection actions, including alert prioritization, augmented threat detection/hunting, playbook creation and the automation of specific incident response (IR) processes. All this will speed up and increase the efficacy of alert triage, enhance alert enrichment, enable better correlation of low level alerts and telemetry across multiple source systems and ultimately improve analyst accuracy and response times.”  Mass: High. Gartner rates AI-Based Security Operations as high, noting that “the shortage of skilled security practitioners will continue to drive an increased appetite for automation within the security operations field, and AI will be strongly leveraged across a range of products to deliver enhanced security outcomes at greater speed.”  AI-Based Security Operations in Sangfor Products  Artificial intelligence (AI) runs through all Sangfor security products and is the key enabler of their advanced threat detection capabilities. For example, our next generation firewall, Sangfor NGAF, and endpoint detection and response (EDR) solution, Endpoint Secure, are both integrated with our AI-powered Engine Zero malware detection engine. Unlike signature-based detection, which matches files with known malware patterns and characteristics, Engine Zero combs through the entire suspected file for signs of maliciousness and categorizes its finds into multiple features. To ensure the accuracy of malware detection, we tested Engine Zero against millions of malware samples to enable it to run and teach itself, expanding our capacity to discover unknown malware and their families.  Our network detection and response (NDR) solution, Sangfor Cyber Command, leverages AI to detect highly sophisticated behavioral threats hidden in network traffic. Using AI to analyze and correlate events from across the network, Cyber Command “connects the dots” between events from various data sources to uncover threats that are missed by point solutions. Event correlation also provides security operators with highly contextualized alerts to streamline investigation and threat hunting efforts so that threats can be identified and eliminated in a timely manner.  Deception as a Feature  Range: 6-8 years  Mass: Medium  Description: “The design point of deception technology is to supplement an organization’s legitimate technology assets (files, databases, domains, servers, applications, credentials, etc.) with a maze of fake assets (decoys, lures, traps and bait) in an attempt to learn about attackers and misdirect them from the genuine articles. In doing so, the attackers are tempted into interacting with this fictitious environment. This ensures that they are not spending their time fruitfully progressing toward their ultimate aims while simultaneously triggering alerts that enable security teams to observe, understand and respond to the attack that is in progress.” Deception as a Feature in Sangfor Products We have integrated deception as a feature into our endpoint detection and response (EDR) solution, Endpoint Secure. Sangfor Endpoint Secure customers will be more familiar with our deception as a feature as the ransomware honeypot, which is part of Sangfor’s range of innovative anti-ransomware capabilities. To date, Sangfor Endpoint Secure is the world’s first and only endpoint security product with a built-in endpoint ransomware honeypot. The ransomware honeypot strategically places bait files in system-critical, high target and random computer directories. Once the honeypot detects the encryption of these bait files, Endpoint Secure immediately kills the encryption process. The encryption controlling application is also identified and then located on other infected systems allowing “One-Click Kill” to eradicate the detected ransomware throughout the organization with just a single mouse click. Learn more about Sangfor’s entire range of cutting-edge security products and services by visiting our cyber security page, where you will find out all about their features and capabilities, use cases, customer success stories, and more!   Sources: [1] Gartner, Inc., Emerging Tech Impact Radar: Security, Elizabeth Kim et al., published 16 November 2022 Disclaimer: GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and are used herein with permission. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. 


News

Sangfor Partners With NGXess to Deliver Cyber Solutions in Sri Lanka

Sangfor Technologies has now partnered up with the technology-distributing local powerhouse that is NGXess in a move to deliver the most advanced cyberinfrastructure and cybersecurity solutions across Sri Lanka. The Brand Launch Kickoff event held in Colombo, Sri Lanka was hosted by Sangfor from the 6th to the 7th of October and set the platform for the announcement of the Sangfor and NGXess partnership. The event hailed more than 150 customers and 20 core partners from 80 different companies to showcase the latest Sangfor innovations in cybersecurity and cloud computing. The rapid growth of the technology industry has made market expansion challenging and costly for start-ups and new technology vendors in emerging economies and NGXess strives to counter this by understanding the complexities of these technologies to market them efficiently to the people of Sri Lanka, the Maldives, Bangladesh, and expansions in other ASEAN emerging markets. NGXess is a value-added distributing company based in Sri Lanka that helps businesses, governments, and organizations deliver and apply successful advanced technology projects by partnering with next-generation computing vendors and innovators. They can provide training from a professional aspect with a consultative sales approach to allow target markets to fully grasp the concepts and designs of the IT infrastructure we are trying to implement. With almost 22 years of research and development investments, Sangfor is committed to ensuring IT infrastructure and cybersecurity solutions with superior integration and automation through our distributors. We welcome teamwork and provide superior consulting services, active solutions, and thorough post-sales support to all our customers to ensure maximum efficiency. This partnership with NGXess is one of Sangfor’s strategic steps into the South Asian market and through our allyship with NGXess, we can create a deeper understanding of the existing local market trends to deliver more effective and tailored solutions to customers. Sangfor’s country manager, Finn Yang assured the press that this new partnership with NGXess will be essential in the digital development of Sri Lanka and all its industry sectors, stating that a wide range of potential customers exists within the South Asian country and he is confident that “Sangfor can fully match their IT transformation business needs.” Sangfor security, cloud, and infrastructure solutions keep the lights burning, the people connected and the businesses safe – welcome to our site, our solutions, and our future. Finn Yang, Sangfor’s country manager Sangfor aims to create a world of innovation and excellence and the choice to partner with us is a choice to drastically improve the digital infrastructure and cybersecurity of your organization. This step into partnership will empower the people of Sri Lanka and allow Sangfor to assist in ensuring innovative and effective digital transformation. We are grateful for and pleased with this collaboration with NGXess and hope to see positive growth and fruitful expansion from this endeavor in the future. Watch the news video from Art TV News. News video from Art TV News For more information on Sangfor’s cyber security and cloud computing solutions, visit www.sangfor.com.


News

Sangfor Named as a Representative Vendor of MDR Services 

Sangfor Technologies has been listed as a Representative Vendor of Managed Detection and Response (MDR) Services in China in the 2022 Market Guide for Managed Detection and Response Services, China[1] by Gartner®. According to Gartner, Representative Vendors listed in the report “are those that are visible to Gartner clients based on inquiries and represent variety in both distribution and size.” What is Managed Detection and Response? For readers unfamiliar with Managed Detection and Response, let us back up and provide a brief introduction. Gartner defines MDR as “the services providing customers with remotely delivered modern security operations center (MSOC) functions. These functions allow organizations to rapidly detect, analyze, investigate and actively respond to threat mitigation and containment.” Core MDR services include 24/7 security monitoring, incident detection and response, threat hunting, and threat intelligence. MDR vendors may also package adjacent security services along with core MDR services. These may include asset discovery and management, vulnerability assessments, forensics, incident root cause analysis, penetration testing, and on-site emergency response. MDR services can be deployed in various service models. In a Full Technology Stack service model, the majority of the security tools used to render the service is owned by the MDR vendor. This is the opposite in a Bring-Your-Own-Technology stack model, in which customers mainly use their own security tools for the service. A Hybrid Technology Stack, on the other hand, involves a more even proportion of security tools from the MDR vendor and the customer. Readers who wish to gain a deeper understanding of MDR the following article by our MDR experts. Learn why MDR is the answer to today’s cyber security talent shortage and discover the many benefits organizations can reap from MDR. Insights into the MDR Services Market in China The Gartner Market Guide observes that “MDR services in China are different from those of the global market through their hybrid delivery model of combining remote and on-site service teams and the various options of adjacent services that are available.” However, the report notes that the Chinese MDR market is “moving forward to the international model”. The transition to the international model we believe is fueled by a number of factors, including: Lockdown and Quarantine Measures Pandemic-related lockdown and quarantine measures mean that on-site delivery of MDR services is not always possible and reliable. This has pushed many organizations to “seek automated, remote and fast-to-deploy security operations solutions.” Global Security Talent Shortage In line with the global situation, China is also suffering from the shortage in cyber security personnel and skills. The report notes that “small and midsize businesses without sufficient security foundations (headcount, technology deployment, etc.) want MDR services to quickly deliver basic monitoring and response functions, to meet security baselines from regulations and standards such as multilevel protection scheme (MLPS) 2.0, and to respond to security incidents that are not expected to occur frequently or with huge impacts.” In terms of market direction, the Gartner Market Guide notes that “the MDR services market is still in a stage of expansion in China, so it has huge potential for growth.” Specifically, the report predicts that “by 2026, 60% of organizations in China that currently have an internal security operations center (SOC) will use MDR services to augment their internal security capabilities and resources.” Sangfor Cyber Guardian MDR Sangfor Cyber Guardian is Sangfor’s Managed Detection and Response (MDR) service. Sangfor Cyber Guardian seamlessly integrates human and machine intelligence to help organizations detect and respond quickly and accurately to security threats. It is powered by Sangfor’s state-of-the-art AI-based threat detection and response engines, which pull in global threat intelligence to enhance detection accuracy. Sangfor Cyber Guardian's global team of security experts work 24/7. They continuously analyze threats and provide customers meaningful guidance on how to respond to these threats. With over 1,000 customers, 1.2 billion logs analyzed daily, and an expanding library of over 1,500 detection use cases, Cyber Guardian is proven to boost cyber threat detection. Visit the Cyber Guardian webpage to learn about its advantages, benefits, use cases, videos, and more!   Sources:  [1] Gartner, Inc., Market Guide for Managed Detection and Response Services, China, Angela Zhao, Published 17 October 2022 Disclaimer: Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. Gartner is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.


Hear from Sangfor NGAF Customers on Gartner Peer Insights

image content
 

NGAF Firewall Product Models

Models AF-1000-B1080* AF-1000-B1120* M4500 M5100 M5200 M5250 M5300 M5400
Profile Desktop 1U Desktop 1U 1U 1U 1U 1U
Firewall Throughput (1),(2) 1.05 Gbps 1.75 Gbps 2 Gbps 2.8 Gbps 4.9 Gbps 5.5 Gbps 12 Gbps 20 Gbps
IPS+WAF Throughput(HTTP) (1) N/A 700 Mbps 1.2 Gbps 1.4 Gbps 2.1 Gbps 2.1 Gbps 3.85 Gbps 5.6 Gbps
Threat Protection Throughput (1),(4) 600 Mbps 800 Mbps 1 Gbps 1.8 Gbps 2.1 Gbps 2.1 Gbps 4.2 Gbps 5.6 Gbps
NGFW Throughput (1),(3) 800 Mbps 1 Gbps 1.4 Gbps 2.5Gbps 2.8 Gbps 2.8 Gbps 5 Gbps 8.4 Gbps
IPSec VPN Throughput (1) 100 Mbps 100 Mbps 250 Mbps 250 Mbps 375 Mbps 375 Mbps 1 Gbps 1.25 Gbps
Max IPsec VPN Tunnels 100 100 300 300 500 500 1000 1500
Concurrent Connections (TCP) 800,000 800,000 250,000 750,000 1,200,000 1,800,000 2,000,000 2,500,000
New Connections (TCP) 15,000 18,000 10,000 20,000 30,000 50,000 80,000 110,000
Power and Hardware Specifications
Support Dual Power Supplies N/A N/A N/A N/A N/A N/A Yes Yes
Power [Watt] Max 60W 40W 60W 40W 40W 40W 60W 150W
Model Datasheets
Click to Download N/A N/A pdf file pdf file pdf file pdf file pdf file pdf file

* AF-1000-B1080, AF-1000-B1120, AF-2000-B3100, AF-2000-B3200, AF-2000-B3300 are only available in specific regions, please contact our local sale representatives for more details.

  1. All performance data is measured in the laboratory environment. The real-world performance may vary depending on the configuration & network environment.
  2. Firewall Throughput is measured with 1518 Bytes UDP packets.
  3. NGFW Throughput is measured with Firewall, Application Control, Bandwidth Management and IPS enabled.
  4. Threat Prevention Throughput is measured with Firewall, Application Control, Bandwidth Management IPS and Anti-Virus enabled.
  5. For More specification details, please check the Sangfor NGAF brochure or model datasheet.

 

Models M5500 M5600 M5800 M5900 M6000 AF-2000-B3100* AF-2000-B3200* AF-2000-B3300*
Profile 2U 2U 2U 2U 2U 2U 2U 2U
Firewall Throughput (1),(2) 25 Gbps 50 Gbps 67 Gbps 105 Gbps 140 Gbps 140 Gbps 180 Gbps 240 Gbps
IPS+WAF Throughput(HTTP) (1) 8.4 Gbps 14 Gbps 21 Gbps 42 Gbps 56 Gbps 63 Gbps 84 Gbps 126 Gbps
Threat Protection Throughput (1),(4) 9.1 Gbps 18 Gbps 26.5 Gbps 50.4 Gbps 67.2 Gbps 79.4 Gbps 91.2 Gbps 105 Gbps
NGFW Throughput (1),(3) 12.6 Gbps 23 Gbps 31 Gbps 56 Gbps 84 Gbps 90 Gbps 120 Gbps 140 Gbps
IPSec VPN Throughput (1) 2 Gbps 3 Gbps 3.75 Gbps 5 Gbps 5 Gbps 7 Gbps 10 Gbps 15 Gbps
Max IPsec VPN Tunnels 3,000 4,000 5,000 10,000 10,000 15,000 20,000 30,000
Concurrent Connections (TCP) 3,000,000 4,000,000 8,000,000 12,000,000 16,000,000 20,000,000 32,000,000 35,000,000
New Connections (TCP) 220,000 300,000 330,000 450,000 600,000 650,000 800,000 900,000
Power and Hardware Specifications
Support Dual Power Supplies Yes Yes Yes Yes Yes Yes Yes Yes
Power [Watt] Max 150W 150W 150W 760W 760W 860W 860W 860W
Model Datasheets
Click to Download pdf file pdf file pdf file pdf file pdf file N/A N/A N/A

* AF-1000-B1080, AF-1000-B1120, AF-2000-B3100, AF-2000-B3200, AF-2000-B3300 are only available in specific regions, please contact our local sale representatives for more details.

  1. All performance data is measured in the laboratory environment. The real-world performance may vary depending on the configuration & network environment.
  2. Firewall Throughput is measured with 1518 Bytes UDP packets.
  3. NGFW Throughput is measured with Firewall, Application Control, Bandwidth Management and IPS enabled.
  4. Threat Prevention Throughput is measured with Firewall, Application Control, Bandwidth Management IPS and Anti-Virus enabled.
  5. For More specification details, please check the Sangfor NGAF brochure or model datasheet.

Frequently Asked Question

Next-generation firewalls (NGFWs) are a newer and more sophisticated type of firewall technology classified as deep-packet inspection firewalls. As well as port and protocol inspections, an NGFW has the ability to inspect on the application level. In doing so, it can actively work to filter and prevent intrusions, incorporate other cyber security technologies, and form a single, holistic cyber security solution for businesses.

Sangfor NGAF is the world’s first AI-powered NGFW solution. It incorporates other Sangfor solutions such as NGWAF and Endpoint Secure and is powered by Engine Zero and the Neural-X platform. The major benefit of using a NGFW solution comes from the combination of heightened security and simplified operation and management processes.

Next-generation firewalls like Sangfor NGAF are fully integrated solutions that offer comprehensive protection and a birds-eye view of your organization’s network. They can incorporate other security solutions and platforms to offer more efficient, simplified, and AI-powered protection.

Advantages of an NGFW solution include:

Being able to adapt to and protect against newer, more advanced, and malicious malware strains on the application level. Simplified operation and maintenance even for organizations without a dedicated IT team. Complete visibility over your network security and a granular approach to traffic and potential threats. Real-time detection and rapid response of threats, as well as learning to prevent similar attacks in the future.

Traditional firewalls are a network security system that have been around for years and are commonplace throughout all businesses and personal computers. They function on the basic principle of filtering and inspecting both incoming and outgoing traffic for anomalies or traits that might signify a security threat based on a set of pre-coded rules.

Next-generation firewalls differ in that they are a more advanced evolution of traditional firewall security systems. As well as completing the fundamental filtering process, next-generation firewalls operate on a more granular application level and can further incorporate additional solutions for an all-in-one security plan.