Threat Intelligence at Machine Speed
FortiGuard Labs is the global threat intelligence and research organization at Fortinet. Its mission is to provide customers the industry’s best threat intelligence to protect them from malicious cyberattacks. Using millions of global network sensors, FortiGuard Labs monitors the worldwide attack surface and employs artificial intelligence (AI) to mine that data for new threats.
The efforts of the global team of experienced threat hunters, researchers, analysts, tool developers, and data scientists enable FortiGuard Labs to keep all Fortinet products updated with the best threat identification and protection information available.
FortiGuard Labs has also been instrumental in developing the concepts of threat sharing and collaboration in the threat intelligence industry. Through these efforts, FortiGuard Labs has built a valuable partner ecosystem that includes threat intelligence peers, governmental agencies and international law enforcement organizations.
21/05/2020Offense and Defense – A Tale of Two Sides: (Windows) OS Credential Dumping
18/05/2020The Use – and Abuse – of DotNet Files, and the Value of FortiResponder Automation in the Threat Analysis Process
05/05/2020FortiGuard Labs Discovers Multiple Critical Vulnerabilities in Adobe Illustrator CC 2020
Practical Threat Intelligence
Actionable Threat Research
Fortinet Security Fabric
Fortinet Distribution Network
FortiGuard Security Subscriptions
Want to know how you can leverage FortiGuard Labs to optimize performance and maximize the protection of your Fortinet solutions? Simply add the appropriate FortiGuard Subscriptions and Services to your Fortinet Security Fabric deployments. Available as both individual and bundled subscriptions.
Threat Intelligence Leadership
Cybercrime Prevention Leader
FortiGuard Labs advocates for the sharing of intelligence with law enforcement and other global security organizations, and has been instrumental in the design and creation of these secure communication channels. Fortinet co-founded the Cyber Threat Alliance (CTA) and has worked with international law enforcement to take down cybercrime organizations.
Fortinet Distribution Network
FortiGuard Labs knows that cybersecurity defenses are only as good as the threat intelligence informing them. Coupled with an ever-evolving threat landscape, speed is inherent to a strong defense—customers need the latest protections at their fingertips, fast. The Fortinet Distribution Network rapidly delivers world-class threat intelligence updates to customer solutions, enabling updates to multiple products across the globe each day.
Malicious hashes/URLs/IP/Domains updated every 15 minutes
Anti-malware updates every 60 minutes
FortiSandbox 0-day malware updates every 5 minutes
IPS signatures updated every 42 hours
* update frequencies based on historical average
FortiGuard Labs Threat Map
Industry and Partner Community Leadership
FortiGuard Labs has been committed to delivering the best threat intelligence to customers for over 20 years. This includes sharing intelligence with law enforcement and other security vendors to access to as much information as possible. Fortinet firmly believes that sharing this intelligence improves protection for customers as well as the effectiveness of the entire cybersecurity industry.
FortiGuard Labs joined FIRST in 2012, an international confederation of trusted computer incident response teams who cooperatively handle computer security incidents and promote incident prevention programs.
Co-founded the Cyber Threat Alliance (CTA) in 2014 and wrote the first sharing bylaws for the organization.
FortiGuard Labs joined INTERPOL ICGEG (Global Expert Group) in 2016.
FortiGuard Labs contributed to the development of the STIX/TAXII protocols as well as the MISP platform, both of which are now deployed globally for threat intelligence sharing.
FortiGuard Labs has over 200 individual sources of threat intelligence from partners in cyberspace.
Independent Third-party Validation
Independent, third-party tests provide a critical and impartial measure of the quality of a product, and a reliable reference for customers making a purchase decision.
Fortinet is committed to participation in unbiased credible testing so customers can see how Fortinet solutions compare to other vendors and select the solution that is right for their needs.Product Certifications