Results for ips

Business and Technology

When It Comes to Intrusion Prevention, FortiGate IPS Stands Alone in the IPS Market

Fortinet takes industry recognition and evaluations seriously, and we were very pleased when in their 4th Next Generation Intrusion Prevention System (NGIPS) Test Report and Security Value Map NSS Labs rated Fortinet FortiGate IPS as “Recommended,” their somewhat understated way of according a product their highest rating.

By Nat SmithNovember 07, 2017

Industry Trends

Best Practices to Help Safeguard Your Organization for the Internet of Things

Today, the billions of online IoT devices present an even more daunting challenge because they generally don't receive the level of control, visibility, and protection that traditional systems receive. Coupled with widespread automation-based attacks, the potential for damage is even greater. Recent developments, outlined below, reveal why it's time to take IoT security seriously.

By Derek MankyOctober 30, 2017

Threat Research

The Analysis of Apache Struts 1 ActionServlet Validator Bypass (CVE-2016-1182)

Apache Struts 1 ValidatorForm is a commonly used component in the JAVA EE Web Application that requires validated form fields input by a user, such as a login form, registration form, or other information form. By configuring the validation rules, Apache Struts can validate many different kinds of fields - username, email, credit card number, etc. However, a bug in Apache Struts 1 can be used to manipulate the property of ValidatorForm so as to modify the validation rules, or even worse, cause a denial of service or execute arbitrary code in the...

By Dehui YinOctober 25, 2017

Industry Trends

5 Network Security Challenges That Will Keep Financial Services CIOs On Alert in 2017

The financial services industry was a primary target for cybercriminals in 2016, and due to the value of its data, it will remain in the crosshairs as we embark on 2017. As a result, financial services CIOs will be faced with security decisions and challenges that will likely keep them up at night. While this isn’t an exhaustive list of challenges CIOs will face in the coming year, we’ve outlined several challenges we believe nearly all financial services organizations will have to face in 2017. Let’s take a closer look. 1....

By Brian Forster March 16, 2017

Threat Research

FortiGuard Labs Telemetry: Round up of 2015 and 2016 IoT Threats (Part 2 Home Routers)

In our last post [Round up of 2016 IoT Threats] we compared 2015 and 2016 global threat telemetry for IoT devices collected by our FortiGuard Labs. In this post, we will examine why home routers had a such a huge increase in IPS signature hits in 2016, when compared to 2015. Home Routers In 2015, home routers had the most IPS signature hits at around 821,000. But this number exploded exponentially in 2016, to more than 25 billion hits. We can see the exponential increase more clearly when we compare both years using a size comparison chart...

By Gavin ChowMarch 13, 2017

Industry Trends

The Move to Consolidation and Integration: Simplifying Security in Financial Services

In meeting with large financial institutions, the single biggest thing we keep hearing about is the need to simplify and consolidate their security infrastructure. As Financial Services has evolved from person-to-person transactions to a fully digital business model, the industry’s networks have evolved as well, become increasingly complex and more difficult to defend. During this evolution, as new threats have emerged, financial organizations have gone out and purchased a host of different security products, often from different vendors,...

By Bart RichardsJanuary 23, 2017

Industry Trends

NSS Labs 2016 NGIPS Group Testing

NSS Labs 2016 NGIPS Group Testing Fortinet is highly committed to the public testing of its products and solutions because it helps us to continuously improve our products and provide the best technology to our customers. We participate in dozens of tests across a spectrum of labs and approaches.  In the most recent NSS Labs Next-Generation Intrusion Prevention System (IPS) group test, Fortinet received an almost perfect score with an overall rating of 99.6%. However, during testing an issue was identified that resulted in an evasion...

By John MaddisonOctober 13, 2016

Industry Trends

Black Hat Las Vegas 2016 Observations:The Show Floor

The Show Floor I’m always interested to walk the show floor the first day of a conference to get a sense of what the vendor community has decided is important. The show floor at Black Hat is especially interesting, because while most of the vendors are responding to the security demands of their customers, just upstairs researchers are demonstrating the next generation of threats that haven’t yet, for the most part, been addressed. A quick walk around the floor shows two major trends. The big bets vendors are making are cloud security...

By Bill McGeeAugust 04, 2016

Threat Research

Misconfigured NFS Servers Put Thousands of Terabytes of Data at Risk

Using the data provided by website shodan.io, we did a study on the publicly open NFS servers on the Internet and the result is quite interesting. We found that 10% of NFS servers in the world, which contains thousands of Terabytes of data, are open for everyone to access. Some of the servers we identified contain confidential data such as email backup, server logs and web source code of active websites

By Tien PhanMay 30, 2016