About SonicWall Capture Labs

The SonicWall Capture Labs Threat Research Team gathers, analyzes, and vets cross-vector threat information from the SonicWall Capture Threat network, consisting of global devices and resources including:

  • More than 1 million security sensors in nearly 200 countries and territories
  • Cross‐vector, threat‐related information shared among SonicWall security systems, including firewalls, email security, endpoint security, honeypots, content-filtering systems and the SonicWall Capture Advanced Threat Protection multi‐engine sandbox
  • SonicWall internal malware analysis automation framework
  • Malware and IP reputation data from tens of thousands of firewalls and email security devices around the globe
  • Shared threat intelligence and exploits from more than 50 industry collaboration groups and research organizations
  • Intelligence from freelance security researchers
  • 1M+ Sensors
  • 200+ Countries & Territories
  • < 24 Hours Response to Zero-Day Vulnerabilities
  • 200K+ Malware Samples Collected Daily
  • 200K+ Malicious Events Analyzed Daily

SonicWall Capture Labs performs rigorous testing and evaluation on this data, establishes reputation scores for email senders and content, and identifies new threats in real-time.

SonicWall Capture Labs researchers pioneered the use of artificial intelligence for threat research and protection over a decade ago. SonicWall developed its Automated Real-Time Breach Detection and Prevention Platform to provide cutting-edge defenses in this cyber arms race.

Today, SonicWall Capture Labs uses machine-learning algorithms to analyze data and classify and block known malware before it can infect the network. Unknown files are sent to Capture Advanced Threat Protection for analysis using a variety of techniques, including hypervisor analysis, emulation, virtualization and the newly introduced patent-pending Real-Time Deep Memory Inspection.™  Decisions are rendered in nanoseconds, blocking zero-day malware in near real time.