Fortinet Leads Industry in Zero-Day Discoveries - Seite 2
"Zero-day vulnerabilities can be developed into dangerous weapons by cyber criminals or nation states and can be used to effectively subvert targeted systems. Our mission is to take the fuel out of their fire, protecting targets before they are under attack," Manky continued. "Zero-day protection is a tough task, and our approach offers unique and effective protection against APTs."
Responsible Disclosure
FortiGuard Labs' responsible disclosure dictates a discovered vulnerability be patched before public disclosure. Even without a working patch, a
signature for the vulnerability can be generated to prevent intrusions. Once a signature is created, it is put through FortiGuard Labs' zero-day signature process and assigned a generic name. The
goal is to provide protection while disclosing as few details as possible. From there, FortiGuard works together with vendors to create a patch for the vulnerability. After a patch is released,
FortiGuard continues to work with the vendor to analyze the source of the vulnerability and to help prevent similar zero-days from being exploited in the future.
Beyond Signatures
As malware numbers have increased exponentially in recent years, network security vendors have had to find alternate methods for malware detection and
mitigation. Fortinet, for example, incorporates several new protective features and functionalities into its FortiOS operating system. FortiOS 5 includes more than 150 new security features that
help protect against today's Advanced Persistent Threats (APTs) and Advanced Targeted Attacks (ATAs). These enhancements include advanced malware detection, exploit discovery and protection,
cloud-based reputation systems and a multi-vector policy engine, which offers the ability to apply policy based on the user and device identity; an important attribute for distributed, virtual and
cloud networks.
In addition to analyzing the threat landscape, FortiGuard Labs researchers write and present papers at global security conferences, including EICAR, Blackhat, Virus Bulletin, Insomni'Hack and Hashdays. Published papers and presentations from these shows can be downloaded from here: http://www.fortiguard.com/resources/ResearchPapers.html
Lesen Sie auch
About FortiGuard Labs
FortiGuard Labs has identified the most recent threats based on data collected from FortiGate® network security appliances and intelligence systems in
production worldwide. Customers who use Fortinet's FortiGuard Services should be protected against the vulnerabilities outlined in this report as long as the appropriate configuration parameters
are in place.