Anti-Malware, Anti-Bot, Anti-Virus

Stop Malware Attacks

The best way to protect your organization is to keep malware out. Hackers use malware to:

  • Cause data breaches
  • Extort money by encrypting data and holding it for ransom
  • Expose your intellectual property
  • Disrupt business and destroy systems

The FortiGuard Antivirus Service:

  • Reduces the risk of data breach or damage caused by malware with highly effective antivirus protection delivered through multiple control points
  • Decreases management and operational costs with “set and forget” functionality
  • Protects against the latest malware variants with proactive technologies able to block previously unknown threat variants Lowers both your entry and maintenance costs with device-based licensing
  • Keeps your protection up-to-date with hourly updates

FortiGuard Antivirus protects against the latest viruses, spyware, and other content-level threats. It uses industry-leading advanced detection engines to prevent both new and evolving threats from gaining a foothold inside your network and accessing its invaluable content.

Fortinet consistently receives superior effectiveness results in industry testing with AV Comparatives and Virus Bulletin. AV Comparatives awarded Fortinet its highest award, the Advanced+ rating for file detection and real-world protection. The 2015 VB100 Reactive and Proactive Test ranked Fortinet the security industry’s second highest business AV solution for security effectiveness.

FortiGuard Labs Global Threat Intelligence

Every minute of every day FortiGuard Labs neutralizes approximately 95,000 malware programs targeting traditional, mobile, and IoT platforms. Patented technologies enable FortiGuard Antivirus to identify thousands of current and future malware variants with a single signature – optimizing both security effectiveness and performance.

Knowledge of the threat landscape combined with the ability to respond quickly at multiple levels is the foundation for providing effective security. Hundreds of researchers at FortiGuard Labs scour the cyber landscape every day to discover emerging threats and develop effective countermeasures to protect organizations around the world. More than 250,000 organizations globally use FortiGuard security.

Fortinet and Artificial Intelligence (AI)

Building Artificial Intelligence (AI) systems is a highly complex endeavor, which takes a great deal of effort to build, maintain, and train in such a manner as to be highly effective. The process of training a true, practical, effective and useful System is difficult, time consuming, and very costly. Having said that, Fortinet’s FortiGuard Labs has been secretly working in the area of AI development for over 7 years.

While many other vendors talk about having AI systems, often times this is just mostly marketing hype to satisfy a requirements checkbox, but in actuality their systems are very primitive at best.

Truly large systems like those that Fortinet’s FortiGuard Labs have built are difficult to create, and took an investment of hundreds of millions of dollars to establish. This was started seven years ago due to the foresight of Ken Xie and the Fortinet Leadership team, who envisioned that this is where the needs of our customers are going, and working to satisfy that need before the market even realized it. This is what Fortinet accomplished.

Fortinet created a system that is a 4-layer Artificial Neural network. It consists of 2 hidden layers, one for analyzing known malware, and one for analyzing clean files as a control method.

The system consists of 5.5 billion nodes using over 8.5 billion features. These features are essentially code blocks captured from several sources, including: samples in the wild, from our FortiGuard labs repository, which consists of nearly 0.5 petabytes (PBs) of malware, as well as through samples that are shared through the Cyber Threat Alliance, which we founded, as well as approximately 130 different threats feeds.

The system has been in production for almost 2 years, generating complex versions of our patented Content Pattern Recognition Language (CPRL) signatures that are fast, efficient, and highly accurate, resulting in Fortinet’s dominance in independent AV lab ratings.

Before our AI System took over, the signatures used to be created manually by our FortiGuard Labs Threat Researchers, which was a tedious and time-consuming process. Now, the AI creates and publishes the CPRL signatures, and the only human intervention is an occasional quality check (QA) of the machines output.

The system actually consists of four separate AI Systems. There is one massive AI System that is capable of processing over 50 samples per second, plus three smaller AIs that perform other supporting functions. One of the AI Systems is actually watching our engineers QA learning how to perform this functionality as well.

It is also worth noting that Fortinet’s AI Systems were integrated into production without charging costumers extra for an artificial intelligence capability, because Fortinet is focused on doing the right thing for our customers.

Proactively Block Attacks

Attack signatures change. New bots and worms constantly evolve behaviors. Compromised hosts can remain launch pads for malware indefinitely. A key part of the attack kill chain on an organization is when the threat communicates with a command & control server – either to download additional threats or to ex-filtrate stolen data. IP and domain address reputation block this communication, neutralizing threats.

The FortiGuard IP Reputation Service aggregates malicious source IP data from the Fortinet distributed network of threat sensors, CERTs, MITRE, cooperative competitors, and other global sources that collaborate to provide up-to-date threat intelligence about hostile sources. Near real-time intelligence from distributed network gateways combined with world-class research from FortiGuard Labs helps organizations stay safer and proactively block attacks.

The anti-botnet security service is available through the FortiGate next generation firewall.

The FortiGuard Anti-botnet Service

Prevents botnets and other threats from communicating with command & control servers to ex-filtrate data or download malware Blocks large-scale DDoS attacks from known infected sources Protects against malicious sources associated with web attacks, phishing activity, web scanning, scraping, and more Lowers management and operational costs with “set and forget” functionality

FortiGuard Labs Global Threat Intelligence

Every minute of every day FortiGuard Labs blocks approximately 32,000 botnet command & control communication attempts.

Knowledge of the threat landscape combined with the ability to respond quickly at multiple levels is the foundation for providing effective security. Hundreds of researchers at FortiGuard Labs scour the cyber landscape every day to discover emerging threats and develop effective countermeasures to protect organizations around the world. More than 250,000 organizations globally use FortiGuard security.