Fortinet extends FortiEDR capabilities with focus on automation, integration and professional services
Fortinet
Fortinet®, a global leader in comprehensive, integrated and automated cybersecurity solutions, this week announced enhancements to the company's FortiEDR solution that are growing customer adoption exponentially. These include new MITRE ATT&CK tags for system activity, new Managed Detection and Response (MDR) service options and the recently announced Extended Detection and Response (XDR) capability.
With the latest additions, organisations of all sizes can now benefit from advanced endpoint protection with automated endpoint detection and response (EDR), including:
- Cloud-native Endpoint Security: Helps protect employees' computers on and off the network by providing visibility and reducing the endpoint attack surface with a lightweight agent whose operation is transparent to users.
- Integrated Endpoint Protection (EPP) with EDR: This approach not only prevents attacks before and after execution, but can also detect threats that bypass the prevention layer and respond quickly to minimise business impact.
- Managed Detection and Response (MDR) Service: Provides 24/7 threat monitoring, alert triage, remote response and environmental tuning for additional expertise and insight.
Increased need for real-time protection against threats such as ransomware
Trends in ransomware attacks continue to evolve and affect more and more businesses. From the middle to the end of last year, FortiGuard Labs recorded a seven-fold increase in attack volume. With modern ransomware attacks putting data and lives at risk, businesses need to secure their environments and protect critical infrastructure. To address these challenges, FortiEDR, part of the Fortinet Security Fabric, provides patented ransomware protection without reliance on shadow copies that disable the more sophisticated cyberattacks. Additional patented detection and mitigation capabilities thwart other classes of advanced threats while maintaining high availability even in the midst of a security incident. This also buys valuable time needed for a comprehensive incident response.
Protect against a sophisticated threat landscape with FortiEDR
Unlike other endpoint protection solutions that rely on known threat intelligence to block attacks or blunt detection and response tools, FortiEDR provides persistent behaviour-based protection as well as continuous analysis and automatable response that can reverse malicious changes without taking machines offline for re-imaging. In addition, FortiEDR's incident response playbooks allow organisations to easily pre-define common response actions based on endpoint groups, asset value and threat categorisation. This enables organisations to take a risk-based approach to endpoint security and accelerates the incident response process.
As the recent MITRE test demonstrated, FortiEDR uses patented code tracing technology to track all system activity, identify risky behaviour and intervene before damage is done. FortiEDR can then also reverse the damage and restore the system. This approach is more accurate, reduces false alarms, is more durable as it is harder to circumvent, and is able to detect novel and zero-day threats, including supply chain attacks.
Customers use FortiEDR for customisable and automatable response and remediation actions
Read what customers have to say about choosing FortiEDR for automated and efficient real-time breach detection and remediation.
About Fortinet
Fortinet (NASDAQ: FTNT) enables a digital world we can always trust by protecting people, devices, applications and data everywhere. That's why the world's largest enterprises, service providers and government organisations choose Fortinet to securely accelerate their digital journey. The Fortinet Security Fabric platform provides comprehensive, integrated and automated protection across the entire digital attack surface, securing critical devices, data, applications and connections from the data centre to the cloud to the home office. More than 510,000 customers rely on Fortinet to protect their businesses, making it the #1 most-shipped security appliance in the world. And the Fortinet NSE Training Institute, an initiative of Fortinet's Training Advancement Agenda (TAA), offers one of the industry's largest and most comprehensive training programmes to make cyber training and new career opportunities accessible to everyone. Learn more at https://www.fortinet.com, the Fortinet Blog or FortiGuard Labs.
If you are interested in a Fortinet security solution, we can offer a free initial consultation or request a trial for you. You are welcome to contact us via phone, email or our contact form.