Cohesity has introduced next‑generation malware scanning natively integrated into Cohesity Data Cloud, marking a major advancement in how enterprises detect hidden threats inside backup environments. Powered by Sophos’ industry‑leading threat detection engine, the new capability helps organisations identify advanced malware in backup data and restore operations with confidence after cyberattacks.
The launch comes as ransomware and supply-chain threats grow more complex, with attackers increasingly embedding malware in backup repositories. This raises the risk of reinfection during recovery a challenge that traditional, signature‑based tools often fail to detect.
Cohesity’s new scanning engine identifies zero‑day, polymorphic, and fileless threats, enabling enterprises to validate clean recovery points before restoring systems. The capability is included at no extra cost for Cohesity Data Cloud Enterprise Edition customers and does not require a separate Sophos license.
“Cyber resilience is a team sport the strongest outcomes come from combining the best technologies, regardless of who builds them.”
— Mazin Bayado, Technical Leader – Middle East, at Cohesity
“In the Middle East, where cyber threats are rising in scale and sophistication, organisations face growing challenges around safely replicating cloud data to secure on-prem environments,” said Mazin Bayado, Technical Leader – Middle East, Cohesity. “By embedding advanced malware scanning into Cohesity Data Cloud, we’re enabling continuous validation of clean recovery points so operations can be restored with confidence.”
The Sophos-powered engine performs deep inspection during routine backups, ahead of restores, and after indicators of compromise or YARA rules are triggered. Always-on incremental scanning reduces operational overhead while offering snapshot-level visibility far beyond metadata-based approaches.
Sophos X-Ops contributes one of the world’s most extensive threat intelligence networks, spanning tens of millions of endpoints and hundreds of thousands of firewalls worldwide. This intelligence is continuously fed into Cohesity to sharpen detection of emerging malware variants.
Key benefits include advanced threat detection, automated IOC/YARA-triggered scans, clean-recovery assurance, and SOC integration via SIEM and SOAR platforms.
Cohesity and Sophos will showcase the solution at RSAC 2026, where visitors can learn more at Cohesity booth N‑6271 and Sophos booth 6477.
