In this blog post we will analyze a couple of Android malware samples in the Android VM of the FortiSandbox. We'll also share a few interesting and useful tricks. Running a sample in the VM To run a given sample in the Android VM, you should log into the FortiSandbox, make sure an Android VM is available, and then "Scan Input" / Submit a New File. Next, if the objective is to run the malware in the sandbox, you must make sure to skip "static scan," "AV scan," and "Cloud Query"... [Read More]
by RSS Axelle Apvrille  |  Aug 17, 2017  |  Filed in: Security Research
OpenStack is the open-source cloud management platform software that can be used to build a low-cost private cloud for development, and cloud infrastructure as a service (IaaS) offering. Enterprises are also turning to OpenStack for data center and cloud deployment alternatives. Fortinet’s Cynthia Hsieh offers some perspective about OpenStack and security today. Can you talk high level about what customers are considering in regards to the cloud today? Beyond virtualization, organizations are beginning to plan and implement next-generation,... [Read More]
by RSS John Welton  |  Oct 25, 2016  |  Filed in: Industry Trends
With each passing day, enterprise networks are evolving. It started with the advent of virtualization, when companies realized that they don’t need a single server per application. Ever since, there has been a consistent march towards the purely virtual data center. While networks are evolving, so are the threats they face on a day-to-day basis. Building a defense using a perimeter firewall is as futile as defending a castle today using a moat. While it can prevent the causal hacker or trespasser, it does little to nothing to protect against... [Read More]
by RSS Srinath Padmanabhan  |  Aug 29, 2016  |  Filed in: Industry Trends
As an increasing number of businesses migrate critical infrastructure and applications to the cloud, security has become top of mind. It’s no longer enough to spin up a VM and deploy an app. While the cloud offers easy deployment and incredible scalability, organizations must still protect data and applications as if they were in an on premises data center. That requires the right virtual equivalents of security appliances as well as the expertise to deploy and manage them in cloud-based environments. Enter Amazon Web Services and the new... [Read More]
by RSS Chris Dawson  |  Jul 08, 2015  |  Filed in: Industry Trends
An interesting article appeared in Forbes, "Sandbox Vendors Ignore Microsoft License Agreements," in which the author points out that, in "Microsoft's Customer License Agreement (CLA) for embedded systems... there is no provision for a vendor to ship appliances with multiple virtual instances of Windows, or its popular Office productivity suite. In fact, shipping Windows in a virtualized environment is expressly prohibited." From the article it appears that some vendors, such as FireEye, are violating Microsoft's license agreement with each shipment... [Read More]
by RSS Todd Nelson  |  May 21, 2014  |  Filed in: Industry Trends
With a commanding 60% market share, VMware is currently the 800 pound gorilla in the virtual room. And if the news rolling out of this year's VMworld tradeshow was an indicator of its competitive strength, they're obviously not resting on their laurels. In fact, Fortinet was there demonstrating a proof of concept that showed integration with VMware's recently announced NSX network virtualization platform. Derived from allybeag's Kong (2) But VMware is certainly not the only VM in town. Microsoft has also taken a keen eye in this space with... [Read More]
by RSS Jason Bandouveres  |  Oct 14, 2013  |  Filed in: Industry Trends