fortiguard | Page 6


Sandbox technology and the ongoing effort to defend and protect against cyber threats continues. Independent testing offers organizations valuable insight into what solutions are best for their use case. Below we discuss this maturing technology and the role of testing with Fortinet’s David Finger. I saw the announcement from NSS Labs about their recent Breach Detection Group Test results. What is the significance? Cyberattacks and breaches continue to be top of mind across organizations, and because of that, sandbox technology (or Breach... [Read More]
by RSS Bill McGee  |  Aug 02, 2016  |  Filed in: Industry Trends
Fortinet’s FortiGuard Labs cybersecurity threat report takes a look at the nature of attacks – how attackers get in, how they manage to persist inside networks, what they want, and who they are. It also provides insight into three key areas of concern that our FortiGuard Labs team has identified, and they bear reviewing here. 2016 Rio Olympics: Cyberattacks during the Olympic games are not new. We have seen a spike of attacks focused on the Olympics – including targeting vendors and spectators – beginning as far back as the... [Read More]
by RSS Ladi Adefala  |  Aug 01, 2016  |  Filed in: Industry Trends
In my last blog post, we walked through, at a high level, who the various threat actors are, and looked at a blended attack chain to get an idea of how “bad guys” are stealing data or causing disruption.  (https://blog.fortinet.com/post/threat-intelligence-understanding-your-threat-actors-101-part-1-of-3) As a quick reminder, we also discussed the seven phases of the attack chain: reconnaissance, weaponization, delivery, exploit, command and control, internal reconnaissance, and maintaining. In this blog I’ll focus on how... [Read More]
by RSS Anthony Giandomenico  |  May 17, 2016  |  Filed in: Industry Trends
This week Fortinet announced even more advances to our award-winning, ICSA-certified Advanced Threat Protection solution – because, apparently, awesome simply wasn’t good enough. What is Advanced Threat Protection? The unprecedented growth of devices, users, applications, transactions, and services passing through the increasingly distributed corporate infrastructure is transforming networks. And much of this data is highly prized by the cybercriminal community as it often includes confidential and sensitive information, customer... [Read More]
by RSS David Finger  |  Apr 25, 2016  |  Filed in: Industry Trends
I don’t think a day goes by without hearing about another company that was a victim of a data breach.  These companies are not small either.  Organizations like the Office of Personnel Management (OPM), The Internal Revenue Service (IRS), United Airlines and many others have all lost very sensitive data.  Despite significant investments in the latest next-generation technologies, software defined networks, virtualized data centers, and new detection and alerting capabilities for anomalous traffic we still seem to be losing the... [Read More]
by RSS Anthony Giandomenico  |  Apr 08, 2016  |  Filed in: Industry Trends
Fortinet, like most members of the security community, understands that we’re entering uncharted territory as the Internet of Things becomes a mainstream phenomenon. To that end, Fortinet invests significant resources into threat intelligence and researchers who work every day to discover new vectors of attack and strategies for cyber infection before they can be deployed maliciously. One such vector, discovered by Fortinet senior threat researcher, Axelle Apvrille, allows an attacker to inject unauthorized code onto a Fitbit band over... [Read More]
by RSS Derek Manky  |  Oct 23, 2015  |  Filed in: Industry Trends
Last week, FortiGuard Labs announced a remote denial of service vulnerability in the Teradata Gateway and Teradata Express. Teradata is a leading provider of big data solutions including business intelligence, data warehousing, CRM, and more. Many high-profile global enterprises use Teradata and the vulnerability could be used for corporate espionage or to to draw attention away from other malicious actions such as exfiltrating data and compromising other systems. Because this vulnerability does not require an attacker to be authenticated, it... [Read More]
by RSS Anthony Giandomenico  |  Jul 23, 2015  |  Filed in: Security Research
Today, Adobe has released a new announcement of vulnerabilities, 3 of which were discovered by researchers at FortiGuard Labs. Adobe Flash and Shockwave continue to be a challenge for organizations and vendors to keep secure. Memory corruptions can lead to the development of zero-day exploits against systems and there are overlaps in feature sets between versions of Shockwave and Flash. FortiGuard Lab researchers are finding chatter among hacker groups that leads us to believe attackers are still finding Flash and Shockwave as a viable and... [Read More]
by RSS Aamir Lakhani  |  Jul 14, 2015  |  Filed in: Industry Trends
Trust is a tricky thing. It’s hard to gain, easy to lose, and exceptionally difficult to win back. Following the Edward Snowden disclosures and ongoing wrangling in Congress and the courts about privacy, monitoring, and data collection, trust between the public and private sectors, especially in the IT and security space, has been in short supply. It comes as no surprise then, that more than a few companies and individuals in the security industry have pushed back on government efforts to increase data sharing and collaboration around threat... [Read More]
by RSS Chris Dawson  |  May 19, 2015  |  Filed in: Industry Trends
There are a lot of trends and conversations being explored at this year's RSA Conference in San Francisco, CA. Among the most talked about is just how vulnerable businesses are when there is no protection around social media usage by employees. While this topic can certainly set off controversy, it doesn’t necessarily have to if you have the right security strategy in place. Digital Strategist Jonas Tichenor speaks with Fortinet Security Strategist Richard Henderson about social media and ways to keep your organization safe. [Read More]
by RSS Jonas Tichenor  |  Apr 22, 2015  |  Filed in: Industry Trends