Fortinet Extends FortiEDR Capabilities with Focus on Automation, Integration and Professional Services
John Maddison, EVP of Products and CMO at Fortinet
“Unlike traditional Endpoint Protection Platform (EPP) products that bolt on Endpoint Detection and Response (EDR), or first generation EDR solutions that add EPP later, FortiEDR is the only solution that was built as a unified solution from the start. As a result, it seamlessly provides behavior-based protection, detection and response at both pre-infection and post-comprise stages as demonstrated in the recent MITRE ATT&CK Evaluation results. In the past year, FortiEDR customer adoption grew more than 300 percent. This advancement in endpoint security is critical to defend against the sophistication and maliciousness of recent high profile cyberattacks and evolution of ransomware.”
Fortinet® (NASDAQ: FTNT), a global leader in broad, integrated and automated cybersecurity solutions, today announced enhancements to the company’s FortiEDR solution, whose customer adoption has been growing exponentially. These include new MITRE ATT&CK tags for system activity, new managed detection and response (MDR) service options and the recently announced extended detection and response (XDR) capability.
With the latest additions, organizations of all sizes can now benefit from advanced endpoint protection with automated endpoint detection and response (EDR), including:
- Cloud-native Endpoint Security: Helps secure workers’ computers on and off the network, providing visibility into and reduces the endpoint attack surface with a lightweight agent whose operation is transparent to users.
- Integrated Endpoint Protection (EPP) with EDR: Not only does this approach prevent attacks pre- and post-execution, but can also detect threats that bypass the prevention layer and quickly respond to minimize business impact.
- Managed detection and response (MDR) service: Delivers 24x7 threat monitoring, alert triage, remote response and environment tuning for additional expertise and insight.
Increased Demand for Real-Time Protection to Thwart Threats like Ransomware
Ransomware attack trends continue to evolve and impact more and more organizations. From the middle to end of last year, FortiGuard Labs saw a sevenfold increase in volume of attacks. As modern ransomware attacks place data and lives at risk, organizations need to secure their environments and to protect critical infrastructure. To address these challenges, FortiEDR, as part of the Fortinet Security Fabric, delivers patented ransomware protection without any dependency on shadow copies that the more sophisticated cyberattacks disable. Additional patented detect and defuse capabilities thwart other classes of advanced threat while maintaining high availability even in the midst of a security incident. This also buys valuable time needed for full incident response.
Protecting Against a Sophisticated Threat Landscape with FortiEDR
Unlike other endpoint protection solutions that rely on known threat intelligence to block attacks or blunt tools for detection and response, FortiEDR provides durable behavior-based protection and ongoing analysis and automatable response that can roll back malicious changes without taking machines offline to re-image. Additionally, FortiEDR’s incident response playbooks enable organizations to easily pre-define common response actions based on endpoint groups, asset value and threats categorization. This allows companies to take a risk-based approach to endpoint security, and speed the incident response process.
As proven by the latest MITRE test, FortiEDR leverages patented code tracing technology to track all system activities, identify at-risk behavior and step in to block before damage is done. FortiEDR can then also unwind the damage and restore the system. This approach is more accurate, decreasing false positives, more durable as its harder to evade, and able to detect novel and zero day threats, including supply chain attacks.
Customers Flock to FortiEDR for Customizable and Automatable Response and Remediation Actions
Here’s what customers have to say about selecting FortiEDR to identify and stop breaches in real-time automatically and efficiently.
“As our infrastructure team was looking to protect our 330 servers housed in two data centers, the FortiEDR endpoint detection and response capabilities stood out. The solution’s advanced protection capabilities to detect potential threats in real time and automate threat response procedures with customizable playbooks was something we were looking for. We have peace of mind knowing that we have the Fortinet endpoint solutions in place, and the managed service is an additional safety net.”
- Joe Kuehl, District Technology Manager, Millard Public Schools
“With FortiEDR and the Fortinet Security Fabric, our security infrastructure will automatically block and tackle. In our legacy environment, if our endpoint solution detected something, internal staff had to enter it on the MSP’s help desk portal. It would take at least half a day for remediation efforts to begin, with a day or more until resolution. In contrast, if FortiEDR detects an issue, it will cut it off right away. The time to response is almost immediate. Also, because FortiEDR ties into the rest of the Fortinet Security Fabric, we will gain a better line of sight to our endpoints. Fortinet offers great technology at a great price, with great visibility across the whole stack.”
- Shaun Guthrie, Senior Director, IT, Alberta Urban Municipalities Association (AUMA)
- Watch how Fortinet makes possible a digital world you can always trust.
- View how the Fortinet Security Fabric platform delivers broad, integrated, and automated protection across an organization’s entire digital infrastructure.
- Learn more about FortiGuard Labs global threat intelligence and research and the FortiGuard Security Subscriptions and Services portfolio.
- Read more about how Fortinet customers are securing their organizations.
- Learn more about Fortinet’s free cybersecurity training, an initiative of Fortinet’s Training Advancement Agenda (TAA), or about the Fortinet Network Security Expert program, Security Academy program, and Veterans program.
- Engage in the Fortinet User Community (Fuse). Share ideas and feedback, learn more about our products and technology, and connect with peers.
- Follow Fortinet on Twitter, LinkedIn, Facebook, and Instagram. Subscribe to Fortinet on YouTube.
Fortinet (NASDAQ: FTNT) makes possible a digital world that we can always trust through its mission to protect people, devices, applications and data everywhere. This is why the world’s largest enterprises, service providers, and government organizations choose Fortinet to securely accelerate their digital journey. The Fortinet Security Fabric platform delivers broad, integrated, and automated protections across the entire digital attack surface, securing critical devices, data, applications, and connections from the data center to the cloud to the home office. Ranking #1 in the most security appliances shipped worldwide, more than 510,000 customers trust Fortinet to protect their businesses. And the Fortinet NSE Training Institute, an initiative of Fortinet’s Training Advancement Agenda (TAA), provides one of the largest and broadest training programs in the industry to make cyber training and new career opportunities available to everyone. Learn more at https://www.fortinet.com, the Fortinet Blog, or FortiGuard Labs.
Copyright © 2021 Fortinet, Inc. All rights reserved. The symbols ® and ™ denote respectively federally registered trademarks and common law trademarks of Fortinet, Inc., its subsidiaries and affiliates. Fortinet's trademarks include, but are not limited to, the following: Fortinet, FortiGate, FortiGuard, FortiCare, FortiManager, FortiAnalyzer, FortiOS, FortiADC, FortiAP, FortiAppMonitor, FortiASIC, FortiAuthenticator, FortiBridge, FortiCache, FortiCamera, FortiCASB, FortiClient, FortiCloud, FortiConnect, FortiController, FortiConverter, FortiDB, FortiDDoS, FortiExplorer, FortiExtender, FortiFone, FortiCarrier, FortiHypervisor, FortiIsolator, FortiMail, FortiMonitor, FortiNAC, FortiPlanner, FortiPortal, FortiPresence , FortiProxy, FortiRecorder, FortiSandbox, FortiSIEM, FortiSwitch, FortiTester, FortiToken, FortiVoice, FortiWAN, FortiWeb, FortiWiFi, FortiWLC, FortiWLCOS and FortiWLM.
Other trademarks belong to their respective owners. Fortinet has not independently verified statements or certifications herein attributed to third parties and Fortinet does not independently endorse such statements. Notwithstanding anything to the contrary herein, nothing herein constitutes a warranty, guarantee, contract, binding specification or other binding commitment by Fortinet or any indication of intent related to a binding commitment, and performance and other specification information herein may be unique to certain environments. This news release may contain forward-looking statements that involve uncertainties and assumptions, such as statements regarding technology releases among others. Changes of circumstances, product release delays, or other risks as stated in our filings with the Securities and Exchange Commission, located at www.sec.gov, may cause results to differ materially from those expressed or implied in this press release. If the uncertainties materialize or the assumptions prove incorrect, results may differ materially from those expressed or implied by such forward-looking statements and assumptions. All statements other than statements of historical fact are statements that could be deemed forward-looking statements. Fortinet assumes no obligation to update any forward-looking statements, and expressly disclaims any obligation to update these forward-looking statements.