All news with #fortinet tag

FortiCNAPP Named Leader in Three KuppingerCole Categories

🚀 FortiCNAPP has been named a Leader in three categories in the 2025 KuppingerCole Compass for CNAPP: Overall Leadership, Market Leadership, and Innovation Leadership. The recognition emphasizes FortiCNAPP’s ability to reduce tool sprawl, improve visibility into cloud risk, and accelerate remediation. Customers cite rapid, intuitive deployment, agentless scanning, AI-driven analytics, and tight integration with the Fortinet Security Fabric as key benefits.

Why Hybrid Mesh Firewalls Are the Future — Fortinet

🛡️ Fortinet argues that hybrid mesh firewalls (HMF) are now the baseline for modern enterprise security, unifying hardware, virtual, cloud-native and FWaaS instances under a centralized management plane. The post highlights FortiGate appliances running a single OS (FortiOS) and custom ASICs as the foundation for consistent policy, high-performance inspection, and fabric-wide telemetry. It frames HMF as essential for SASE integration and scalable, consistent enforcement across clouds, branches and data centers.

Partner-built AI Security Innovations on Google Cloud

🔒 Google Cloud and its partners announced a range of partner-built AI security solutions now available in the Google Cloud Marketplace. These integrations embed Gemini and Vertex AI into partner products — including CrowdStrike, Palo Alto Networks, Fortinet, and others — to protect models, data, applications, and agents. The collaborations emphasize automated detection, incident response, DLP, identity protection, and agent monitoring to reduce mean time to detect and respond, helping customers adopt AI securely.

Fortinet Adds AI Assistant and Client-Side WAAP Protection

🤖 Fortinet has integrated its virtual AI assistant, FortiAI-Assist, into its web application security offerings, including appliance and virtual FortiWeb and the FortiAppSec Cloud WAAP service. The update also adds integrated client-side protection to monitor payment-page scripts for PCI DSS 4.0 compliance. These features aim to simplify operations, speed threat triage and remediation, and reduce false positives and analyst workload. FortiAppSec Cloud is available through major public cloud marketplaces.

Fortinet + AI: Next‑Gen Cloud Security and Protection

🔐 AI adoption in the cloud is accelerating, reshaping workloads and expanding attack surfaces while introducing new risks such as prompt injection, model manipulation, and data exfiltration. Fortinet recommends a layered defense built into the Fortinet Security Fabric, combining zero trust, segmentation, web/API protection, and cloud-native posture controls to secure AI infrastructure. Complementing those controls, AI-driven operations and correlation — exemplified by Gemini 2.5 Pro integrations — filter noise, correlate cross-platform logs, and surface prioritized, actionable recommendations. Together these measures reduce mean time to detect and respond and help contain threats before they spread.

New Malware Campaigns: MostereRAT and ClickFix Risks

🔒 Researchers disclosed linked phishing campaigns delivering a banking malware-turned-RAT called MostereRAT and a ClickFix-style chain distributing MetaStealer. Attackers use an obscure Easy Programming Language (EPL), mutual TLS for C2, and techniques to disable Windows security and run as TrustedInstaller to evade detection. One campaign drops remote-access tools like AnyDesk and VNC variants; another uses fake Cloudflare Turnstile pages, LNK tricks, and a prompt overdose method to manipulate AI summarizers.

MostereRAT Targets Windows with Layered Stealth Tactics

🔒 FortiGuard Labs has uncovered MostereRAT, a Remote Access Trojan targeting Microsoft Windows that uses layered evasion and persistence techniques. Written in Easy Programming Language, the malware deploys a multi-stage chain, uses mutual TLS for C2 communication, and can disable Windows Update and antivirus processes. The campaign, aimed largely at Japanese users, begins with phishing emails that lead to a malicious Word download and installs services running at SYSTEM-level, while deploying remote access tools such as AnyDesk and TightVNC.

MostereRAT Campaign Uses EPL, mTLS, and Legitimate RATs

🛡️ FortiGuard Labs identified a sophisticated phishing campaign that chains an Easy Programming Language (EPL) runtime with multi-stage payloads to deploy MostereRAT. The initial dropper, based on a wxWidgets sample, creates SYSTEM services and decrypts modules that run in memory while presenting social‑engineering prompts. Operators use mTLS‑protected C2 channels, disable and block security tooling via WFP filters, and install legitimate remote access tools such as AnyDesk and TightVNC to secure covert, persistent full access.

Architecture Advantage: Fortinet's Hybrid Security Platform

🔒 Fortinet argues its long-standing, architecture-first approach uniquely positions it to address hybrid enterprise security without the operational overhead of cobbled-together point products. The company highlights early investments in AI, purpose-built ASICs, and a unified FortiOS to deliver integrated networking, SASE, SOC automation, and OT protection. Customers and Gartner Peer Insights recognition are cited as validation of lower total cost of ownership and simpler, high-performance operations.

SASE Summit 2025 — Convergence without Compromise, Global

🔒 Fortinet’s 4th Annual SASE Summit (NAMER: Sept 16, 2025; EMEA/LATAM/APAC: Sept 18, 2025) centers on the theme Convergence without Compromise, arguing that robust security and top performance can be delivered together through a unified, AI-driven platform. The event features Gartner VP Analyst Jonathan Forest and Fortinet leaders Nirav Shah and Jordan Thompson, along with customer case studies from Tepper Sports & Entertainment and Funke Mediengruppe. Attendees will receive practical guidance on adopting a consolidated SASE approach that embeds zero trust, AI-enabled controls, and end-to-end visibility to reduce complexity, cut costs, and better protect hybrid workforces and cloud environments.

Fortinet Marks International Women in Cybersecurity Day

👩‍💻 Fortinet marks International Women in Cybersecurity Day 2025 by highlighting programs that expand access to cybersecurity training and career pathways for women. The Fortinet Training Institute and its Education Outreach Program provide free access to Network Security Expert (NSE) training and certifications, and run instructor-led initiatives such as the Networking Fundamentals Bootcamp. Through a four-year partnership with WiCyS, Fortinet supported regional meetups and led a Hands-on SOC Workshop at the WiCyS Annual Conference (April 2–5, 2025) in Dallas. These efforts are positioned to address the global cyber skills gap ahead of the forthcoming 2025 Cyber Skills Report.

Fortinet AI-Driven SecOps: Unified, Faster Threat Response

🔒 Fortinet SecOps unifies telemetry across network, endpoints, cloud, and email into a single data lake, reducing blind spots and simplifying investigation. Powered by FortiGuard AI and integrated tools like FortiSIEM, FortiEDR, FortiNDR, and FortiSOAR, it couples behavior-based detection with automated playbook-driven response. The platform emphasizes analyst-centric dashboards, Security Fabric enforcement, and continuous exposure management to lower false positives and accelerate containment.

Phishing Campaign Uses UpCrypter to Deploy Multiple RATs

🔒 FortiGuard Labs has detailed a global phishing campaign that uses personalized HTML attachments and spoofed websites to deliver a custom loader, UpCrypter, which installs multiple remote access tools. The operation uses tailored lures—voicemail notices and purchase orders—embedding recipient emails and company logos to appear legitimate. The delivered ZIPs contain obfuscated JavaScript that runs PowerShell, fetches further payloads (sometimes hidden via steganography) and ultimately loads RATs such as PureHVNC, DCRat and Babylon, while UpCrypter checks for sandboxes, enforces persistence and can force reboots to hinder analysis.

Phishing Campaign Uses UpCrypter to Deploy RATs Globally

📧 Fortinet FortiGuard Labs has observed a phishing campaign using fake voicemail and purchase-order lures to direct victims to convincing landing pages that prompt downloads of JavaScript droppers. The droppers retrieve the UpCrypter loader, which conducts anti-analysis and sandbox checks before fetching final payloads, including various RATs such as PureHVNC, DCRat and Babylon. Attacks since August 2025 have targeted manufacturing, technology, healthcare, construction and retail/hospitality across multiple countries; defenders are urged to block malicious URLs, strengthen email authentication, and monitor anomalous M365 activity.

Fortinet Unified SASE: Integrated Networking and Security

🔒 Fortinet presents Fortinet Unified SASE as a natively integrated platform that combines cloud-delivered FortiSASE with Fortinet Secure SD‑WAN on a single operating system to avoid the fragmentation common in many SASE solutions. The article stresses a single-agent experience via FortiClient, one management plane powered by FortiOS, and consolidated threat intelligence from FortiGuard Labs. It highlights flexible deployment choices, global POPs, and sovereign SASE options to meet data residency and compliance requirements. Fortinet also emphasizes AI/ML-driven correlation and GenAI-assisted policy and investigation to improve detection and operational efficiency.

Fortinet at Black Hat USA 2025: Innovation & Community

🔒 Fortinet played a central role at Black Hat USA 2025, engaging thousands of attendees through demos, theater sessions, and partner presentations. At Booth #2446 and the Security Fabric Theater, Fortinet highlighted integrated capabilities across secure networking, SOC transformation, endpoint protection, and CNAPP, and showcased research on adversarial AI. The program extended into DEF CON 33, reinforcing the urgency of attack surface management and rapid threat detection.

What I Wish I Knew Before Becoming a CISO — Advice

🔒 Drawing on a Black Hat panel and an eclectic career spanning Unix administration, MSSP operations, and multiple roles at Fortinet, the author distills practical guidance for aspiring and new CISOs. Key points stress that the role is not purely technical but a business resilience function demanding clear, data-driven communication, calendar discipline, and strong team building. The post also highlights burnout risks and the critical need for D&O insurance and legal preparedness.

Closing Common Cloud Security Gaps with FortiCNAPP Platform

🔒 FortiCNAPP unifies cloud security across posture, workload runtime, control plane, and application layers to address common gaps that expose cloud-native applications. The platform delivers continuous asset discovery and inventory mapping, built-in CSPM with compliance mappings, runtime workload protection, and CDR that correlates host telemetry with cloud audit logs via composite alerts. Integrated FortiWeb WAF/API protections and CI/CD scanning enable a shift-left workflow so developers and security teams can detect and remediate risks earlier without slowing delivery.