The SonicWall Capture Labs Threat Research Team gathers, analyzes, and vets cross-vector threat information from the SonicWall Capture Threat network, consisting of global devices and resources including:
- More than 1 million security sensors in nearly 200 countries and territories
- Cross‐vector, threat‐related information shared among SonicWall security systems, including firewalls, email security, endpoint security, honeypots, content-filtering systems and the SonicWall Capture Advanced Threat Protection multi‐engine sandbox
- SonicWall internal malware analysis automation framework
- Malware and IP reputation data from tens of thousands of firewalls and email security devices around the globe
- Shared threat intelligence and exploits from more than 50 industry collaboration groups and research organizations
- Intelligence from freelance security researchers
- 1M+ Sensors
- 200+ Countries & Territories
- < 24 Hours Response to Zero-Day Vulnerabilities
- 200K+ Malware Samples Collected Daily
- 200K+ Malicious Events Analyzed Daily
SonicWall Capture Labs performs rigorous testing and evaluation on this data, establishes reputation scores for email senders and content, and identifies new threats in real-time.
SonicWall Capture Labs researchers pioneered the use of artificial intelligence for threat research and protection over a decade ago. SonicWall developed its Automated Real-Time Breach Detection and Prevention Platform to provide cutting-edge defenses in this cyber arms race.
Today, SonicWall Capture Labs uses machine-learning algorithms to analyze data and classify and block known malware before it can infect the network. Unknown files are sent to Capture Advanced Threat Protection for analysis using a variety of techniques, including hypervisor analysis, emulation, virtualization and the newly introduced patent-pending Real-Time Deep Memory Inspection.™ Decisions are rendered in nanoseconds, blocking zero-day malware in near real time.