Select a theme from the list.
Insights

From our experts

Latest
Sophos Fusion Recasts the Security Platform as an AI-Driven Defense SystemShark Vacuum Cloud Weakness Turns One Device Certificate Into a Regional Master KeyTrusted Meeting Apps Become the Bait in a Multi-Layer Windows Malware CampaignMicrosoft Makes Passkeys the Entra ID Default and Sets a Deadline for Native SMS AuthenticationSonicWall Zero-Days Under Active Attack Demand Immediate SMA1000 PatchingCritical Chrome and Firefox Updates Put Browser Restarts Back on the Security AgendaAsyncAPI Package Breach Turns Trusted Build Pipelines Into a Malware Delivery SystemMicrosoft Expands AI-Led Security Hardening and Sets 2029 Quantum-Safe GoalGlobal CMS Exploitation Wave Plants Webshells on Business WebsitesExposed Attack Server Unmasks Three Microsoft 365 Phishing OperationsMicrosoft Prepares Windows Customers for a Faster Era of AI-Driven PatchingLaser Attack Exposes an Unpatchable Weakness in Tangem Crypto Wallet CardsSophos Fusion Recasts the Security Platform as an AI-Driven Defense SystemShark Vacuum Cloud Weakness Turns One Device Certificate Into a Regional Master KeyTrusted Meeting Apps Become the Bait in a Multi-Layer Windows Malware CampaignMicrosoft Makes Passkeys the Entra ID Default and Sets a Deadline for Native SMS AuthenticationSonicWall Zero-Days Under Active Attack Demand Immediate SMA1000 PatchingCritical Chrome and Firefox Updates Put Browser Restarts Back on the Security AgendaAsyncAPI Package Breach Turns Trusted Build Pipelines Into a Malware Delivery SystemMicrosoft Expands AI-Led Security Hardening and Sets 2029 Quantum-Safe GoalGlobal CMS Exploitation Wave Plants Webshells on Business WebsitesExposed Attack Server Unmasks Three Microsoft 365 Phishing OperationsMicrosoft Prepares Windows Customers for a Faster Era of AI-Driven PatchingLaser Attack Exposes an Unpatchable Weakness in Tangem Crypto Wallet Cards
Security Insight

Sophos Fusion Recasts the Security Platform as an AI-Driven Defense System

Sophos Fusion Recasts the Security Platform as an AI-Driven Defense System
Photo by Christina Morillo on Pexels

Sophos has introduced Fusion, an AI-native security architecture designed to coordinate endpoint, identity, network, email, cloud, and security operations controls through a shared data layer. The company is positioning the system as an evolution of Sophos Central, with additional MDR, XDR, SIEM, AI governance, and executive risk capabilities planned for the coming months.

News Date: 2026-07-15

Sophos has launched Sophos Fusion, describing it as an AI-native cybersecurity defense system intended to replace fragmented security operations with a coordinated architecture. Rather than treating endpoint protection, firewalls, identity monitoring, email security, cloud controls, and detection tools as separate products, Fusion is designed to share signals and trigger responses across those control points.

From Product Stack to Shared Context

The central idea is a unified context layer that receives security telemetry as events occur. Sophos argues that traditional SIEM and early XDR deployments often collect or correlate information only after individual products have already made isolated decisions. Fusion is intended to let one control influence another immediately.

For example, an endpoint detection could prompt a firewall response, while evidence of a compromised identity could result in access restrictions elsewhere in the environment. More than 500 third-party integrations are expected to feed the same shared layer, an important consideration for organizations that cannot replace their entire security estate with products from one supplier.

Sophos says the system incorporates agentic automation while retaining boundaries established by human analysts. The company reports that AI currently handles 52 percent of cases in its own security operations environment without human intervention, with an average automated response time of 89 seconds. These are vendor-provided operational figures, so prospective customers should validate how the measurements apply to their own risk profiles and infrastructure.

A Broader Product Roadmap

Fusion is an evolution of Sophos Central, and existing customers are expected to see the interface and naming change over time without needing to perform an immediate migration. Planned additions include expanded MDR and XDR capabilities using Secureworks Taegis analytics, as well as a next-generation SIEM priced by users and servers rather than ingested data volume.

Sophos also plans to add AI Defense for monitoring approved and unapproved AI services, alongside CISO Advantage for control validation, compliance mapping, benchmarking, and executive risk reporting.

Questions Buyers Should Ask

  • Can customers inspect and override automated response decisions?
  • How quickly does third-party telemetry become available for correlation?
  • What data is retained, and where is the shared context stored?
  • How are false positives contained before automated actions disrupt operations?

I believe the strategic direction is sensible. Security teams need fewer isolated consoles and faster coordination. However, the real test will be transparency, integration quality, and whether automation produces measurable risk reduction rather than simply creating another layer of platform complexity.

Talk to our team →

Latest

Sophos Fusion Recasts the Security Platform as an AI-Driven Defense SystemJul 16, 2026Shark Vacuum Cloud Weakness Turns One Device Certificate Into a Regional Master KeyJul 16, 2026Trusted Meeting Apps Become the Bait in a Multi-Layer Windows Malware CampaignJul 16, 2026Microsoft Makes Passkeys the Entra ID Default and Sets a Deadline for Native SMS AuthenticationJul 15, 2026SonicWall Zero-Days Under Active Attack Demand Immediate SMA1000 PatchingJul 15, 2026Critical Chrome and Firefox Updates Put Browser Restarts Back on the Security AgendaJul 15, 2026

Most read

1Global CMS Exploitation Wave Plants Webshells on Business Websites2Exposed Attack Server Unmasks Three Microsoft 365 Phishing Operations3Microsoft Expands AI-Led Security Hardening and Sets 2029 Quantum-Safe Goal4Microsoft Prepares Windows Customers for a Faster Era of AI-Driven Patching5Laser Attack Exposes an Unpatchable Weakness in Tangem Crypto Wallet Cards6Switzerland Mandates 24-Hour Cyberattack Reporting for Critical Sectors