SUNNYVALE, CA--(Marketwired - Nov 19, 2013) - Fortinet® (
Fortinet NGFWs act as a first line of defense by scanning and mitigating threats. When used with FortiSandbox, the appliances together are able to identify and apply advanced inspection to suspicious or high risk files and then update protections based on the full threat lifecycle of attacks uncovered. And with the new FortiMail version 5.1, Fortinet email gateways can now similarly identify suspicious or high risk files in email and pass them to FortiSandbox for advanced inspection.
The FortiSandbox-3000D can be deployed on-premise on its own without changing any network configurations. Or, as mentioned, it can also be integrated with and extend Fortinet's FortiGate and FortiMail platforms for improved detection and mitigation.
Consistent with Fortinet's product development approach, the FortiSandbox consolidates specialized threat detection and intelligence services across protocols and functions into a single, high-performance and highly affordable appliance. At the heart of the appliance is a dual-level sandbox to effectively deal with increasing virtual machine (VM) evasion techniques and the increasing sophistication of attacks that require more advanced inspection.
"Today's most sophisticated attackers are increasingly bypassing traditional anti-malware solutions and establishing a persistent presence within organizations' networks," said John Grady, Research Manager, Security Products at IDC. "These highly targeted attacks evade signature-based defenses by leveraging compression, encryption, and polymorphism among other methods. Some malware variants are even able to detect virtual environments and utilize sleep techniques to make identification much more difficult. Combating today's attacks requires a comprehensive and integrated approach that goes beyond anti-malware, virtual sandboxes and separate monitoring systems. The FortiSandbox appliance is a step in this direction."
Key features of FortiSandbox include:
- Dynamic Antimalware and Updates/Cloud Query: Receives updates from FortiGuard Labs and can send queries back to the Labs in real time, helping to intelligently and immediately detect existing and emerging threats
- Code Emulation: Performs lightweight sandbox inspection in real time, including certain malware that uses sandbox evasion techniques and/or only executes with specific software versions
- Full Virtual Environment: Provides a contained runtime environment to analyze high risk or suspicious code and explore the full threat lifecycle
- Advanced Visibility: Delivers comprehensive views into a wide range of network, system and file activity, categorized by risk, to help speed incident response
- Callback Detection: Inspects network traffic for requests to visit malicious sites, establish communications with C&C servers and other activity indicative of a compromise
- Manual Analysis: Allows security administrators to manually upload malware samples to perform virtual sandboxing without the need for a separate appliance
- Optional Submission to FortiGuard: Tracer reports, malicious files and other information may be submitted to FortiGuard Labs in order to receive remediation recommendations and updated in line protections
"The introduction of the FortiSandbox appliance is in direct response to APTs that are using highly sophisticated evasion techniques to avoid security detection," said John Maddison, vice president of Marketing for Fortinet. "Given our many years of threat research and development, we're finding that inspection of file activity, as a complement to inspection based on attributes, is a necessary means of combating APTs. Our customers now have the opportunity to easily and cost-effectively perform detailed analysis of specific threats traversing their networks with the added benefit of integrating with our FortiGate and FortiMail appliances to perform in line, real-time threat mitigation."
The FortiSandbox-3000D is available now.
Follow Fortinet Online:
Twitter at: www.twitter.com/fortinet
Facebook at: www.facebook.com/fortinet
YouTube at: http://www.youtube.com/user/SecureNetworks
LinkedIn at: http://www.linkedin.com/company/fortinet
G+ at: https://plus.google.com/+fortinet
Copyright © 2013 Fortinet, Inc. All rights reserved. The symbols ® and ™ denote respectively federally registered trademarks and unregistered trademarks of Fortinet, Inc., its subsidiaries and affiliates. Fortinet's trademarks include, but are not limited to, the following: Fortinet, FortiGate, FortiGuard, FortiManager, FortiMail, FortiClient, FortiCare, FortiAnalyzer, FortiReporter, FortiOS, FortiASIC, FortiWiFi, FortiSwitch, FortiVoIP, FortiBIOS, FortiLog, FortiResponse, FortiCarrier, FortiScan, FortiAP, FortiDB, FortiVoice and FortiWeb. Other trademarks belong to their respective owners. Fortinet has not independently verified statements or certifications herein attributed to third parties, and Fortinet does not independently endorse such statements. Notwithstanding anything to the contrary herein, nothing herein constitutes a warranty, guarantee, binding specification or other binding commitment by Fortinet, and performance and other specification information herein may be unique to certain environments. This news release may contain forward-looking statements that involve uncertainties and assumptions. Changes of circumstances, product release delays, or other risks as stated in our filings with the Securities and Exchange Commission, located at www.sec.gov, may cause results to differ materially from those expressed or implied in this press release. If the uncertainties materialize or the assumptions prove incorrect, results may differ materially from those expressed or implied by such forward-looking statements and assumptions. All statements other than statements of historical fact are statements that could be deemed forward-looking statements. Fortinet assumes no obligation to update any forward-looking statements, and expressly disclaims any obligation to update these forward-looking statements.