Fortinet unveils new digital risk protection offering

Fortinet, a global provider of broad, integrated, and automated cybersecurity solutions, has launched FortiRecon, a comprehensive Digital Risk Protection Service (DRPS) offering.

FortiRecon manages a company’s risk posture and advises meaningful action to protect its brand reputation, enterprise assets, and data using a powerful combination of machine learning, automation capabilities, and FortiGuard Labs cybersecurity experts.

FortiRecon provides a unique triple offering of outside-in coverage across External Attack Surface Management (EASM), Brand Protection (BP), and Adversary-Centric Intelligence (ACI) to counter attacks during the reconnaissance phase – the first stage of a cyberattack – reducing the risk, time, and cost of later stage threat mitigation.

John Maddison, EVP of Products and CMO at Fortinet said, “The sooner in the attack cycle you identify and stop an adversary, the less costly and damaging their actions. Employing a powerful combination of human and artificial intelligence, FortiRecon provides organizations with a view of what adversaries are seeing, doing and planning. FortiRecon’s vendor agnostic SaaS delivery model combined with an intuitive interface and easily digestible reports enable executives across the organization to quickly understand the risks posed to their company, data, and brand reputation, while our team of FortiGuard Labs cybersecurity experts enhance the offering with takedown services, guidance on prioritization of remediation efforts, and targeted threat research and intelligence.” 

Organizations are Overwhelmed in the Fight to Protect their Network, Data, and Reputation and Mitigate Risk Early 

A cybercriminal‘s primary goal before attacking an organization is to gather as much information about their target as possible. This stage of early reconnaissance provides the adversary with all of the information they need to determine whether and how they will exploit an organization. They will put a company’s defense and response strategies to the test, look for unpatched systems, use social media to learn more about its employees and their normal behavior, and even research business partners, recent acquisitions, and any other third-party affiliation that could lead to a successful compromise. Identifying and mitigating threats has become increasingly difficult as organizations digitally accelerate their businesses and deploy hybrid IT architectures that expand the attack surface. In response to the increasing velocity of threats, cybersecurity best practices have evolved from one-time assessments to continuous monitoring, ongoing reviews, and continuous improvements to an organization’s security posture.

Taking a Page Out of the Adversary Playbook to Mitigate Risk

Fortinet’s introduction of FortiRecon provides enterprise organizations with a powerful tool to understand how an adversary views an organization from the outside in order to inform cybersecurity teams, the C-Level, and risk and compliance management on how to prioritize risk and improve the company’s overall security posture. FortiRecon provides businesses with consistent and comprehensive coverage in three areas:

• External Attack Surface Monitoring: Empowers organizations to understand their risk profile and mitigate risks early. Provides an outside-in view of an organization and its subsidiaries to identify exposed known and unknown enterprise assets and associated vulnerabilities, and prioritize the remediation of critical issues. EASM identifies servers, credentials, public cloud service misconfigurations, and even third-party partner software code vulnerabilities that could be exploited by malicious actors. 
• Brand Protection: Enables organizations to protect their brand and identify risks to their customers. Proprietary algorithms detect web-based typo-squatting, defacements, and phishing impersonations, as well as rogue mobile apps, credential leaks, and brand impersonation on social media, all common techniques used by cyber threat actors. The early detection of malicious activity allows teams to quickly take action (such as website or application takedown) to stop and prevent damage. 
• Adversary-Centric Intelligence: Increases the security awareness of an organization’s SOC team with industry and geography specific coverage to better understand their attackers and protect assets. FortiGuard Labs cybersecurity experts assess the underground and imminent threat risks posed by active cybercriminals to an individual company by proactively monitoring public and private forums, open-source, dark web, and other cybercriminal domains. By engaging in human intelligence collection, FortiGuard Labs experts assess and curate custom threat intelligence, providing recommendations specific to the company, industry, and geography. 

For partners, FortiRecon can be sold as an add-on to the Fortinet Security Fabric or as a stand-alone, vendor-agnostic solution that generates easily digestible reports and enables their customers to quickly understand the threats to their company, data, and brand reputation. FortiRecon also broadens the types of risk for which partners can provide insight to customers, increasing the opportunity to win new customers who previously only invested in more traditional security solutions.

Enhancing Fortinet’s Early Detection and Response Portfolio and Industry Leading Security Services

FortiRecon adds to Fortinet’s extensive portfolio of early detection and advanced response products, which includes FortiNDR, FortiXDR, FortiDeceptor, in-line sandboxing, and advanced automation with FortiAnalyzer, FortiSIEM, and FortiSOAR.

Fortinet is dedicated to the success of SOC teams and the protection of organizations, and it provides an extensive portfolio of outsourced services ranging from cybersecurity assessments and readiness, playbook development, tabletop training, Incident Response, MDR, and SOC-as-a-service. This combined offering, along with the many enhancements across the Fortinet Security Fabric and extended ecosystem, deliver simplification and automation to assist SOC teams in regaining focus, control, and speed by fortifying an organization’s SOC with FortiGuard Labs cybersecurity tools and experts.