Press release
Sophos releases Firewall OS v22 in Early Access - Focus on Secure by Design
Sophos has released version 22 of its firewall operating system Sophos Firewall OS as an early access release for XGS hardware firewalls as well as virtual and software firewalls with SFOS. The new release is all about Secure by Design - an architectural approach that drastically reduces attack surfaces at the operating system level.New Xstream architecture & hardened kernel
At the heart of the new version is the completely revised Xstream architecture. Services such as IPS, Web Protection or Application Control are now operated in isolation in independent containers. This allows security and stability problems in individual modules to be better isolated at system level, updates to be distributed in a targeted manner and general operational security to be significantly increased.
At the same time, Sophos is focusing on state-of-the-art operating system security with a hardened Linux kernel (from v6.6): The new kernel protects against CPU vulnerabilities such as Spectre, Meltdown, Zenbleed or Downfall and includes protection functions such as KASLR, Stack Canaries or optimized memory segmentation.
Sophos Firewall Health Check & Compliance Functions
Another key feature of SFOS v22 is the integrated Firewall Health Check. The new analysis tool checks central configuration parameters against CIS benchmarks and common best practices and provides recommendations for hardening settings. A dashboard in the Control Center visualizes the current status of the firewall and prioritizes measures for improvement.
In conjunction with new audit trail log functions in accordance with the NIST standard, v22 is therefore particularly suitable for organizations with increased requirements for transparency, traceability and compliance.
Remote Integrity Monitoring & XDR connection
SFOS v22 also introduces a feature that was previously only used in Sophos XDR: the new Remote Integrity Monitoring. This monitors file operations, rule changes and system behaviour in real time and detects manipulation attempts or unauthorized configuration changes, for example.
Security-relevant events are transferred directly to the Sophos Data Lake and can be analyzed there in conjunction with endpoint or server data by Sophos MDR or XDR. Companies thus benefit from more holistic threat detection and faster response options.
Support for SG UTM customers & new UTM features
In view of the end-of-life of SG UTM on July 30, 2026, SFOS v22 also specifically addresses existing UTM customers. Several long-awaited features from the UTM world have been included, including
* SHA-256/SHA-512 support for OTP tokens
* MFA support for form-based WAF logins
* Audit trail logs with before and after comparison
These features make migration to the Sophos Firewall OS much easier - especially for organizations that need similar security and reporting capabilities to those previously available on the UTM platform.
Participation in the Early Access Program & Availability
The Early Access version of SFOS v22 is now available to all registered participants via the official registration page. The installation should be done on test or non-production systems. Support in the EAP phase is provided exclusively via the Sophos community, a dedicated feedback channel is available directly in the interface.
Aphos Gesellschaft f?r IT-Sicherheit mbH
Mergenthalerallee 73-75
Eschborn 65760
Germany
https://aphos.de/
Herr Lennart Wyrwa
061965820160
marketing@aphos.de
Aphos Gesellschaft f?r IT-Sicherheit mbH is a specialized IT security provider with a focus on tailor-made cybersecurity solutions for companies, authorities and public institutions. As a technically fully accredited Sophos Platinum Partner, the company offers first-class consulting, comprehensive support and a broad portfolio of IT security solutions.
With Firewalls24.de, the store for IT security solutions from Sophos, Aphos GmbH enables fast and uncomplicated procurement of Sophos firewalls, switches, access points and Sophos Central licenses.
The combination of technical expertise, personal advice and great prices makes Aphos the ideal partner for companies of all sizes that rely on the highest security standards.
This release was published on openPR.
Permanent link to this press release:
Copy
Please set a link in the press area of your homepage to this press release on openPR. openPR disclaims liability for any content contained in this release.
You can edit or delete your press release Sophos releases Firewall OS v22 in Early Access - Focus on Secure by Design here
News-ID: 4235836 • Views: …
More Releases from Aphos GmbH
Aphos Cyber Landscape 2026: AI Attacks, Identity & Detection Gaps Shape IT Secur …
Artificial intelligence is noticeably changing the threat landscape for small and medium-sized businesses. 81 percent of the organizations surveyed have already detected attempted attacks believed to involve AI. Unusually professional-sounding phishing emails are mentioned particularly frequently. This is a key finding of the "Aphos Cyberlage 2026," a practical survey conducted by Aphos Gesellschaft fuer IT-Sicherheit mbH among 31 decision-makers from IT, security, and executive management in Germany.
The full report can…
FortiBleed: Firewalls24.de Publishes Guide to Immediate Action for Fortinet Admi …
In mid-June 2026, a comprehensive dataset containing valid login credentials for internet-exposed Fortinet firewalls was made public under the name FortiBleed. Firewalls24.de, the German online store and specialist portal for IT security solutions operated by Aphos GmbH, has published a detailed guide on the matter that analyzes the facts and summarizes specific immediate actions for administrators.
Not a New Zero-Day, but Known Vulnerabilities
According to analyses by security researchers Hudson Rock, SOCRadar,…
Aphos Gesellschaft fuer IT-Sicherheit mbH becomes CrowdStrike Partner
Aphos Gesellschaft fuer IT-Sicherheit mbH is expanding its vendor portfolio and is now CrowdStrike partner. With this move, the service provider--which specializes in cybersecurity--is strategically expanding its offerings in the area of modern security solutions and creating additional options for companies, government agencies, and organizations with high requirements for endpoint security, detection and response, and security operations.
CrowdStrike is one of the internationally established providers of cloud-based cybersecurity platforms. Its focus…
Aphos Expands Executive Team and Sets Course for Next Phase of Growth
Aphos Gesellschaft fuer IT-Sicherheit mbH is strategically realigning its management structure, thereby laying the foundation for the next phase of organic growth. With Sebastian Geide as Chief Sales Officer and Maximilian Maschtowski von Kolovrat as Head of Operations, the company is strategically expanding its leadership team in the areas of sales and operational excellence.
Sebastian Geide joined the executive management team in May 2026
Sebastian Geide has been part of the executive…
More Releases for Sophos
Awareness training with Sophos Phish Threat will be a free part of Sophos Email …
From December 10, 2025, every Sophos Email license will include the Sophos Phish Threat awareness tool at no extra charge. The cloud-based email security solution Sophos Email detects threats using artificial intelligence, sandboxing and impersonation protection. Phish Threat is an integrated platform for awareness of cyber threats and phishing.
Sophos Phish Threat offers realistic phishing simulations, interactive learning modules and detailed evaluations of security behavior. The aim is to systematically raise…
CIS Controls v8.1 integrated into Sophos Central Assessment Tool
The assessment tool in Sophos Central now also supports the latest CIS Controls v8.1, adding another internationally recognized standard for assessing cybersecurity maturity to the functionality of Sophos's self-assessment platform. This provides organizations with a practical tool to evaluate and prioritize protection measures in a structured manner and align them with established frameworks such as CIS, NIST or NIS-2.
CIS Controls v8.1: Internationally recognized security framework
The CIS Controls (Center for Internet…
Sophos Expands Cloud-Managed Security Portfolio with Server Protection
Dubai, UAE – November 20, 2014 – Sophos today announced the release of Sophos Cloud Server Protection, a high performance malware protection solution designed specifically for servers. The solution expands Sophos Cloud to a comprehensive security platform designed to protect desktops, laptops, mobile phones, tablets and now servers with the most effective and simplest to manage business security offering available.
Servers store large amounts of sensitive information…
Sophos Announces Expanded Security Offerings through AWS Marketplace
Dubai, UAE– November 12, 2014 – Sophos today announced the expansion of their product portfolio on AWS Marketplace with the addition of a new secure server option for customers on Amazon Web Services (AWS). Building on the success of the Sophos UTM Next Generation Firewall product, which is offered through AWS Marketplace, the new Sophos Secure OS delivers comprehensive security bundled with CentOS.
Secure AWS Servers
AWS provides a comprehensive, scalable cloud…
Sophos Acquires Cyberoam Technologies
Dubai, UAE – February 10, 2014 – Sophos announced today that it has acquired Cyberoam Technologies, a leading global provider of network security products. The acquisition expands and deepens Sophos’ already significant product portfolio in network security, by combining Cyberoam’s Unified Threat Management (UTM), next-generation firewall and network security expertise with Sophos’ existing award-winning network security solutions in UTM and wireless security.
“Sophos and Cyberoam create a winning combination at the…
Sophos Strengthens Senior Leadership Team
Dubai, UAE – February 27, 2013 – Sophos today announced the appointments of two new leaders to the company’s executive team. Michael Valentine has joined Sophos as senior vice president of worldwide sales and Ari Buchler has joined the company as general counsel and vice president of corporate development. Both will be based in the company’s North America headquarters in Boston, and will report to Sophos CEO Kris Hagerman.…
