PT Sandbox defends against HPE "Solid"

2026: PT Sandbox Implementation

TPG Solid has implemented the PT Sandbox to protect corporate mail from malware and complex threats. The project was implemented with the participation of the partner of Positive Technologies - the company "Extreme Security." The product plays an important role in the enterprise's information security system, helping to resist targeted and massive cyber attacks. Positive Technologies announced this on February 25, 2026.

According to Positive Technologies, in 2024-2025, the industry became the main target of cybercriminals: it accounted for 17% of successful attacks aimed at Russian organizations. In 79% of cases, malware was used to penetrate the victims' infrastructure. Almost half (47%) of such incidents began with an email. In an effort to protect corporate mail primarily from ransomware, the Solid group decided to introduce proactive sandbox-based message analysis.

Previously, the company's specialists manually checked suspicious letters, but due to the large volume of incoming traffic, it became necessary to automate the process. There was an increased risk that, having entered the infrastructure through mail, attackers would gain access to trade secrets and other confidential information or paralyze the operation of corporate governance systems. A successful attack could lead to downtime, reputational risks and fines from regulators.

During the pilot project, the product analyzed incoming letters and objects from the file storage: about 40 thousand checks were performed. Among the threats were most often bootloaders, Trojans, support tools for installing HVEs, steelers, exploits and potentially unwanted programs. Based on the results of the PT tests, Sandbox was introduced into the IT infrastructure of the Solid group. The sandbox works in monitoring and response mode - it detects suspicious letters, blocks them and informs the administrator about it.

{{quote 'Sandbox implementation is part of our enterprise's cybersecurity strategy. We needed a Russian product that was convenient to use and had broader functionality compared to its counterparts, "said Dmitry Panov, director of TPG Solid LLC. - The Extreme Security team suggested considering PT Sandbox, and this option turned out to be optimal for us. The product automated the analysis of incoming emails and provided proactive detection of malware and other complex threats. The sandbox helped increase the cyber stability of the plant and became a critical link in our information security system. }}

Companies most often use the sandbox to protect email. The high popularity of HPE among cybercriminals and the attractiveness of mail as a way of penetration lead to the need to use advanced technologies and an integrated approach to detecting threats, - said Konstantin Rudakov, leader of the PT Sandbox product practice. - Our sandbox supports tiered detection by checking files and links with a combination of static methods, behavioral analysis with customizable machine learning and external expertise. In addition, we are continuously developing the integration capabilities of PT Sandbox for seamless and fast interaction with IT and information security systems without compromising business processes.