Threat Protection

Ensure files are malware-free and no sensitive information is shared


Take your secure file transfers to the next level. Seamlessly integrate managed file transfer with advanced threat protection and adaptive data loss prevention to keep your sensitive data secure. The SFT Threat Protection bundle from Fortra allows you to collaborate safely without malware entering your organization, or employees losing or mishandling data.

What Is the SFT Threat Protection Bundle?


Sharing information comes with inherent risks. There’s the risk of opening your systems to threats, such as malware or even threats hidden within file transfers. There’s the risk of exposing the wrong content, whether sent by mistake or hidden in metadata. GoAnywhere MFT offers award-winning threat protection and data loss prevention (DLP) across email, web, and endpoints to strengthen your data security.


What Can You Do With The Threat Protection Bundle?


The SFT Threat Protection bundle allows you to inspect managed file transfer content for threats as well as leakage. A smooth integration between GoAnywhere MFT and the Clearswift Secure ICAP Gateway makes this possible, featuring:

  • Anti-virus and malware protection
  • Deep content inspection
  • Adaptive data loss prevention
  • Media type protection

Here are three common ways you could use this integration to enhance your file transfer security.

Prevent Files with Malware from Being Shared

Simply check a box in GoAnywhere to turn on easy anti-virus protection through the Secure ICAP Gateway to scan all inbound file transfers.

Detect and automatically strip out active content like embedded malware, triggered executables, scripts, or macros used to extract or hold sensitive data hostage. Advanced Threat Protection sanitizes—without delay in delivery—as only the malicious active content is removed, allowing the file transfer to continue unhindered.

This morph-free protection guards against today's leading malware and ransomware (i.e. CryptoLocker, CryptoWall, TorrentLocker, Dridex Dyre, BlackEnergy, etc.) and tomorrow's even more sophisticated threat variants.

More Use Cases


A large medical industry customer wanted its own single, robust file transfer solution (versus the multiple solutions their parent company utilized) to meet their needs for automation as well as comply with auditing and reporting requirements.  


  • Block PII with GoAnywhere MFT and Clearswift’s Secure ICAP Gateway  
  • Scan all inbound file transfers for malicious content, while allowing “safe” content to continue, via the Secure ICAP
  • Gateway’s anti-virus protection  
  • Leverage automation functionality via Automated Workflows  
  • Rely on High Availability and Clustering for push/pull flexibility 


This communications service needed a file transfer solution that could work with the many cloud applications they currently use, as well as gain assurance files pulled from third parties are clean of harmful data. 


  • Connect to popular applications like SharePoint, Google Cloud Storage, and Service Now with GoAnywhere MFT’s Cloud Connectors  
  • Scan all inbound file transfers for malicious content, while allowing “safe” content to continue, via the Secure ICAP Gateway’s anti-virus protection 
  • Ease form completion, processing, and security with the Secure Forms module in GoAnywhere 
  • Automatically process completed forms via GoAnywhere’s Automated Workflows 
  • Implement the solutions bundle quickly and easily with Fortra’s Service training hours


This healthcare organization needed to ensure their file transfer process complied with industry compliance for securing PII on their IBM i platform. 


  • Ensure industry compliance with how sensitive data is handled with the SFT Threat Protection bundle  
  • Scan all inbound file transfers for malicious content, while allowing “safe” content to continue, via the Secure ICAP Gateway’s anti-virus protection 
  • Eliminate scripting or programming for the IBM i environment using GoAnywhere MFT’s comprehensive, user-friendly file transfer solution 


This defense industry organization needed a file transfer solution capable of working with highly sensitive data in daily XML files sent to their SFTP and HTTPS servers as well as the ability to deploy to Azure Gov Cloud for inbound SFTP server.  


  • Ensured both their SFTP and HTTPS servers can secure highly sensitive data with GoAnywhere MFT 
  • Scan all inbound file transfers for malicious content, while allowing “safe” content to continue, with the anti-virus protection of the Secure ICAP Gateway  

Problem: A large supply industry customer wanted both security and efficiency of managed file transfer as well as the protection secured by advanced file scanning and anti-virus solution. 


  • Secure and streamline file transfers and apply control and anti-virus and threat protection to files wherever they may travel with the bundled SFT Threat Protection of GoAnywhere MFT and Clearswift’s Secure ICAP Gateway  
  • Scan inbound files for malicious content while allowing “safe” content to continue without stopping the flow of business with Clearswift’s Sophos Anti-Virus engine  
  • Detect and remove any active content within files, such as embedded macros and scripts triggered when documents are opened with the Advanced Persistent Threats/Structural Sanitization module  
  • Identify sensitive data hidden in images and automatically mask or redact them, if found, with Clearswift’s Optical Character Recognition (OCR) module  
  • Process, secure and streamline forms through GoAnywhere’s Secure Forms module  
  • Use existing cloud applications such as SharePoint through GoAnywhere’s Cloud Connector offerings 

How SFT and Secure ICAP Gateway Keep Government Services Secure


When a large government agency needed to help its citizens submit forms for building permits, pay fees, and report crimes remotely due to the COVID-19 pandemic, they turned to integrated security solutions from Fortra. They already used GoAnywhere for file transfers and added the solutions’ Secure Forms capabilities to help keep the wheels of government rolling. Incorporating data loss prevention and threat protection provided by Clearswift Secure ICAP Gateway they gained additional layer of automated security and helped ensure the data citizens are uploading is safe and free of malware, viruses, or hidden metadata.

Read the Case Study

But Isn't Encryption Enough?


Encrypting sensitive file transfers is vital for ensuring the privacy and integrity of your data and complying with PCI DSS, privacy laws, and government regulations like HIPAA and Sarbanes-Oxley. Encryption can protect your files, but you can do more to ensure your messaging security. Stay aware of what is being transmitted—avoid transmitting viruses, malware, and advanced persistent threats.

Adding threat protection to GoAnywhere allows you to give some individuals the power to transmit PII, but not everyone. Even if your transmission process is secure, you may want or require the ability to audit who is sending what. The Secure ICAP Gateway enhances your encryption by limiting both who can transfer data, and what that data contains.

Two Leading Solutions, One Seamless Integration


The Clearswift Secure ICAP Gateway adds significant value to GoAnywhere MFT because of its threat protection, deep content inspection engine, adaptive data redaction, and flexible policy settings, while managed file transfer makes defining file movements a breeze.

Additional features you can add to your file transfer process are structural sanitization, document sanitization, data redaction, anti-steganography, and optical character recognition. Get the best and most thorough security for file transfer.

How Else Can Clearswift Help You?

Integrating Clearswift’s core ICAP Gateway and threat protection with SFT can resolve gaps in your process and provide additional benefits.

Audit and Control Data in File Transfers

Detect when customer, employee, or patient records in a file are uploaded to SFT, count the records, and maintain an audit log of what data was shared with whom. When you add Clearswift solutions to your SFT instance, you get Lexical Expression Qualifiers, which can detect records based on multi-field matches, and trigger different actions based on number of records detected (e.g., audit, refer to sender, redact, block).

Ensure You Accept the Correct File Types

If you need to accept specific types of files (multimedia, images, XML, Office, PDF), you can enforce "True type" file controls to ensure you don't receive binaries, executables, scripts, or other unwanted file types. Clearswift solutions defend your system based on file byte pattern rather than by name. Plus, the solution works with nested files over 50 levels deep.

Additional Resources

See GoAnywhere Threat Protection in Action

GoAnywhere Threat Protection helps you share critical information inside and outside your organization with an unprecedented level of management control and security. We can show you how.

Request a Demo