Fortinet Expands Lacework FortiCNAPP
Fortinet has announced powerful updates to Lacework FortiCNAPP, making it easier than ever for customers to secure applications and workloads across hybrid and multi-cloud environments. The company also announced that the FortiAppSec Cloud service, FortiMail Workspace Security, FortiNDR Cloud, FortiSIEM, and Fortinet Incident Response services are now available in AWS Marketplace, a digital catalog that helps you find, buy, deploy, and manage software, data products, and professional services from thousands of vendors. 'Fortinet is committed to accelerating secure cloud transformation for our customers. By making more of our services available in AWS Marketplace and enhancing leading cloud-native solutions like Lacework FortiCNAPP and FortiAppSec Cloud, we're making it easier than ever for organizations to protect every cloud workload, application, and network edge, ' says Nirav Shah, Senior Vice President, Products and Solutions at Fortinet
Delivering Smarter Protection, Faster Response and Remediation
Fortinet has enhanced Lacework FortiCNAPP to deliver even stronger protection for cloud-native applications across their entire life cycle. These updates reinforce FortiCNAPP as an industry-leading, cloud-native security platform designed to deliver faster detection, deeper insights, and simplified operations at scale. Real-Time CloudTrail Alerting – Enables near-instant detection of critical activity, such as compromised credentials or anomalous API behavior, by reducing AWS CloudTrail alert latency from 24 hours to under 15 minutes.
– Enables near-instant detection of critical activity, such as compromised credentials or anomalous API behavior, by reducing AWS CloudTrail alert latency from 24 hours to under 15 minutes. Explorer (Security Graph) – Provides a visual, interactive view of attack paths and asset relationships, making pinpointing and investigating exposures, such as internet-facing vulnerabilities, easier.
– Provides a visual, interactive view of attack paths and asset relationships, making pinpointing and investigating exposures, such as internet-facing vulnerabilities, easier. Agentless Windows Scanning – Supports agentless scanning for Windows workloads across any cloud, identifying vulnerabilities and secrets without requiring software deployment. This is ideal for expanding visibility and compliance with minimal overhead.
– Supports agentless scanning for Windows workloads across any cloud, identifying vulnerabilities and secrets without requiring software deployment. This is ideal for expanding visibility and compliance with minimal overhead. Fleet Management – Delivers detailed visibility across large environments into agent inventory, health, and deployment status, helping teams monitor coverage and optimize cloud security.
In addition, Fortinet expands its cloud services for web applications and APIs by introducing new service bundles that include Dynamic Application Security Testing (DAST), CDN, and SoC-as-a-Service, in addition to its AI-powered zero-day threat detection, analysis, and remediation to protect web applications and APIs.
Full-Stack Protection Now Available in AWS Marketplace
Fortinet has expanded the availability of its cloud security portfolio in AWS Marketplace. This provides Amazon Web Services (AWS) customers with the ability to streamline the purchase and management of more Fortinet offerings within their AWS Marketplace account. By deploying solutions on AWS, Fortinet makes it easier for customers to deploy protection, streamline procurement, and apply AWS Enterprise Discount Program (EDP) commitments.
Services now available in AWS Marketplace include: FortiAppSec Cloud – Unified web application and API protection (WAAP) with web application firewall (WAF), bot management, API security, and DDoS mitigation
– Unified web application and API protection (WAAP) with web application firewall (WAF), bot management, API security, and DDoS mitigation FortiMail Workspace Security – End-to-end SaaS protection across email, browsers, and collaboration tools to stop advanced threats in platforms like Microsoft 365, Google Workspace, Slack, and Teams with a built-in, 24×7 managed incident response service to accelerate threat containment and lighten the load on SOC teams
– End-to-end SaaS protection across email, browsers, and collaboration tools to stop advanced threats in platforms like Microsoft 365, Google Workspace, Slack, and Teams with a built-in, 24×7 managed incident response service to accelerate threat containment and lighten the load on SOC teams FortiNDR Cloud – AI-driven threat detection optimized for distributed cloud infrastructure
– AI-driven threat detection optimized for distributed cloud infrastructure FortiSIEM – Scalable log management and incident response for complex environments
Fortinet has achieved the AWS Security Incident Response Specialization, which recognizes that Fortinet provides a streamlined incident response solution backed by AWS security response experts through AWS Security Incident Response.
The capabilities of Fortinet's specialized cloud consulting and FortiGuard Incident Response Services teams help AWS customers strengthen their cloud security posture. Fortinet Incident Response Services are now available in AWS Marketplace, offering expert support backed by deep integration with AWS and the Fortinet Security Fabric. This underscores Fortinet's commitment to supporting customers with end-to-end security expertise—from proactive risk assessments to prompt incident handling—backed by deep integration with AWS-native tools and FortiGuard threat intelligence.
A Strategic Shift toward Unified Cloud-Native Security
This launch reinforces Fortinet's commitment to simplifying cloud security by consolidating fragmented, non-integrated solutions into a unified cloud security platform. Rather than relying on isolated point products, Fortinet delivers integrated solutions across application, network, and user layers designed to streamline management and scale efficiently in any environment.
By unifying capabilities like WAAP, network detection and response (NDR), security information and event management (SIEM), cloud-native application protection platform (CNAPP), and workspace security under a single vendor and deployment model, organizations gain comprehensive cloud protection along with greater speed, cost-efficiency, and operational clarity.
For those with cloud spend commitments and desire to optimize their cloud security investments, particularly in dynamic environments, Fortinet FortiFlex offers a flexible, daily usage-based licensing model that supports rapid deployment, elastic scaling, and seamless drawdown of existing cloud commitments, helping organizations protect what they need, when they need it, while only paying for what they use.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Arabian Post
4 days ago
- Arabian Post
Denmark Takes Bold Stand on Digital Sovereignty
Denmark's Ministry for Digital Affairs has begun replacing Microsoft Office 365 with LibreOffice and is exploring wider adoption of Linux, citing a strategic imperative to reduce dependency on foreign software providers. Caroline Stage Olsen, Minister for Digital Affairs, stated that nearly half the ministry's staff will complete the switch this summer, with full implementation scheduled by autumn. While Windows remains in use, Office products are being phased out to reinforce national autonomy over critical digital infrastructure. The move follows similar local actions in Copenhagen and Aarhus, where municipal administrations initiated transitions to open‑source solutions to avoid potential disruptions linked to political tensions with the United States. Licensing costs for Microsoft Office rose by approximately 72 per cent over the past five years in Denmark, underscoring both the financial and strategic dimensions of the shift. Denmark joins a growing European movement toward digital sovereignty. Germany's state of Schleswig‑Holstein, for instance, plans to migrate some 30,000 public‑sector PCs from Windows and Office to Linux and LibreOffice by 2026. France has promoted 'cloud de confiance' models, while the EU actively develops initiatives like Gaia‑X and France's Bleu cloud to reduce reliance on US tech firms. ADVERTISEMENT Denmark's strategy goes beyond cost cutting. Its leaders emphasise 'digital sovereignty'—the capacity to preserve operational control amid geopolitical uncertainties. The migration aims to pre-empt scenarios where a foreign vendor might withdraw services over political disagreements, as occurred when Microsoft temporarily restricted access to the ICC prosecutor's email during US sanctions. Stage Olsen pointed out the need for resilience: 'We must never make ourselves so dependent on so few that we can no longer act freely'. The migration path combines caution with contingency. LibreOffice is being embraced initially; full Windows replacement with Linux is under consideration, but will depend on technical readiness. Stage Olsen confirmed the ministry will revert to Microsoft tools if disruptions occur. This pragmatic stance aims to balance innovation with continuity. Open‑source alternatives are being deployed across various digital functions. Alongside LibreOffice, Denmark is evaluating NextCloud for secure self‑hosted email, calendar, and file‑sharing services as a replacement for Outlook and OneDrive. Such tools empower users with direct control over data without dependence on hyperscalers. Implementation challenges remain, particularly around software compatibility, user training, and migrating legacy systems such as Excel spreadsheets utilising VBA macros. LibreOffice's support for advanced mathematical and data‑driven Excel functions remains a concern for many users, especially in finance and technical fields. Experiences from previous migrations—most notably Munich's rollback—underscore the importance of careful planning and staged rollouts. Microsoft is responding to these developments by introducing its 'Sovereign Cloud' offering across Europe, promising data residency, European-only administrative access, and encryption controls fully managed by customers. These services demonstrate the growing pressure on major tech vendors to align with national digital policy frameworks. Denmark's strategy fits within a four‑year digitalisation plan that prioritises autonomy, transparency, and resilience. The shift is expected to yield cost savings on licensing over time while ensuring readiness for evolving geopolitical circumstances. It reflects a broader EU ambition to rebalance technological power and foster homegrown digital capacities. Yet the outcome remains uncertain. Technical compatibility and user adoption will determine whether this effort succeeds or stalls. If Denmark navigates these hurdles effectively, it may provide a template for other nations seeking to assert control over their digital ecosystems and reduce strategic vulnerabilities tied to global tech dependencies.
Web Release
5 days ago
- Web Release
ManageEngine Launches MSP Central: A Platform Built for Strengthening Modern MSP Infrastructure
ManageEngine, a division of Zoho Corporation and a leading provider of enterprise IT management solutions, today announced the launch of MSP Central—a unified platform designed to help MSPs streamline service delivery, device management, threat protection, and infrastructure monitoring from a single interface. ManageEngine focuses on addressing specific operational models and business challenges of MSPs, developing tools that support multi-client environments, technician efficiency, and service scalability. MSP Central brings together these capabilities into a unified platform tailored to how MSPs deliver and manage IT services today. Meeting the Evolving Needs of MSPs With the global managed services market projected to reach $511 billion by 2029, MSPs are facing mounting pressure to scale operations without compromising service quality so as to offer a strategic value to customers and differentiate from the competition. 'We had technicians switching between multiple consoles just to resolve a single client incident—a real drag on time and ticket volume,' said Edgar Martínez, business manager at EvolutionIT, an early adopter of MSP Central. 'We were looking for a tool that could bring together everything our team needs without adding complexity or locking us into a rigid stack.' MSP Central directly addresses this fragmentation by offering a unified platform to manage day-to-day operations across clients—from technician workflows and asset visibility to endpoint protection and network health monitoring. Its modular, cloud-native architecture supports native multi-tenancy, fine-grained role-based access control, and seamless integrations with both Zoho apps and third-party tools. This gives MSPs the flexibility to adopt only the modules they need and expand at their own pace. Features Designed to Support MSP Operations 'With MSP Central, we're bringing together the best of ManageEngine's proven IT management and security capabilities in a platform designed from the ground up for MSPs,' said Mathivanan Venkatachalam, vice president at ManageEngine. 'While each of these modules stands strong on its own, together they form a truly unified platform—delivering a single, connected experience for service providers. This approach lets MSPs consolidate their operations, eliminate tool sprawl, and enable their teams to work more efficiently and effectively—all from a unified console.' The platform includes the following capabilities: ? Modular architecture: Adopt only the components required—no bundling or mandatory licensing. ? Remote monitoring and management (RMM): Manage devices across clients with patching, asset visibility, and proactive remediation in a multi-tenant setup. ? Professional services automation (PSA): Integrate ticketing, contract management, SLAs, time tracking, and billing in a unified workflow. ? Advanced server monitoring: Monitor infrastructure across Windows, Linux, databases, and virtual systems with automated alerts and deep metrics. ? Endpoint security: Provide comprehensive protection against evolving cyberthreats with vulnerability management, device and application control, anti-ransomware, and browser security. ? AI-powered automation: Accelerate workflows with ticket summarization, sentiment detection, alert correlation, and predictive thresholds. ? Third-party integrations: Connect seamlessly with over 20 tools across IT, security and business ecosystems via open APIs and pre-built connectors. ? Marketplace ready: Built for integration into cloud marketplaces and partner ecosystems. Looking Ahead MSP Central marks the foundation of ManageEngine's long-term MSP platform strategy, which supports the full spectrum of managed services. Future enhancements will focus on expanding into adjacent domains like SIEM, privileged access management, and advanced analytics, helping MSPs and MSSPs manage security and compliance alongside operations. The platform will also evolve to support deeper integrations with business applications and partner ecosystems, empowering providers to streamline service delivery end to end. 'Our goal is to give MSPs a platform that adapts to their growth, supports their preferred tools, and eliminates the friction of fragmented systems. We're starting with RMM, PSA, and advanced server monitoring, but this is just the beginning. Our vision is to bring all of ManageEngine's standalone MSP tools together under this platform, delivering depth, flexibility, and scalability that helps providers grow alongside their clients' needs. MSP Central is designed to support MSPs for the long haul,' added Venkatachalam. Pricing and Availability MSP Central is available globally starting today. The platform supports flexible modular pricing so MSPs can pay for only what they need. Start your free trial now at:
Arabian Post
5 days ago
- Arabian Post
Critical Windows Flaw in TeamViewer Remote Management Exposes SYSTEM-Level File Deletion Risk
A newly disclosed flaw in TeamViewer's Remote Management tools for Windows allows attackers with local, unprivileged access to delete files with SYSTEM-level privileges, raising serious security concerns for organisations relying on the platform. Tracked as CVE‑2025‑36537, the vulnerability stems from incorrect permissions during MSI rollback operations and affects installations prior to version 15.67. TeamViewer issued a patch on 24 June 2025 and urges all users with Remote Management enabled to upgrade immediately. The vulnerability only applies to the Backup, Monitoring and Patch Management modules—standard screen-sharing configurations without these features are not exposed to the flaw. An attacker must already have local access, but can exploit the issue by triggering MSI rollback to delete arbitrary files within the SYSTEM context. That broad privilege is generally reserved for the Windows operating system itself, and misuse could facilitate full privilege escalation, data destruction, or deployment of additional malware for more sophisticated compromises. TeamViewer assigns the vulnerability a CVSS 3.1 score of 7.0, indicating a high-severity threat. While the firm reports no in-the-wild exploitation, the gravity of SYSTEM-level file deletion leaves little room for complacency. The oversight has been attributed to improper permission assignment of critical resources within MSI rollback logic—a well-known software mechanism for restoring system states when an installation or patch fails. ADVERTISEMENT The issue affects all prior versions of the TeamViewer Remote Management client for Windows before 15.67, including multiple supported legacy builds, as well as the Host variant for equivalent versions. TeamViewer's vendor bulletin TV‑2025‑1002 provides full version details and upgrade instructions. Security specialists warn that SYSTEM-level deletion grants an attacker unprecedented control. As one analyst noted, 'deleting arbitrary files as SYSTEM could disrupt monitoring services, back up data or core OS files,' potentially undermining incident response and remediation. Exploiting the MSI rollback path means standard OS protections and antivirus defences are typically bypassed, leaving only the update itself as an immediate remedy. Remote Management remains a strategic vector, as Backup, Monitoring and Patch Management are common across IT operations, particularly in enterprise and managed service provider environments. Many organisations update legacy systems via these modules, and any oversight in patch adoption or delayed upgrade could expose systems to compromise. Even if remote desktop access is limited, the vulnerability becomes critical once an attacker gains basic user-level entry—via phishing, credential stuffing, malicious USB, or physical infiltration. Cross-referencing authoritative vulnerability feeds and TeamViewer's own disclosure confirms no public exploitation has been observed. However, multiple industry experts caution that no news of attacks does not equate to immunity. A patch rated 7.0 by CVSS typically indicates an attacker with moderate effort could gain full control—bringing the risk to par with vulnerabilities often weaponised by ransomware groups or espionage actors. In addition to urging patch adoption, TeamViewer emphasises the necessity of defence-in-depth. Isolating tools with SYSTEM rights, limiting local user privileges, and enforcing network segmentation can reduce attack surface even if local access is achieved prior to remedy deployment. Security-conscious organisations are also encouraged to audit patch schedules, ensuring Remote Management modules are included in regular updates, not just the baseline client. ADVERTISEMENT The bug comes months after another high-severity issue—CVE‑2025‑0065—affecting TeamViewer clients in argument delimitation parsing, also linked to potential privilege escalation and patched in version 15.62. In early 2024, a separate flaw in patch and asset management components similarly underscored structural weaknesses in privilege management. The pattern highlights the complexity of permission flows in large-scale remote management platforms and the importance of rigorous validation and testing for privilege boundaries. TeamViewer credits Giuliano Sanfins of SiDi, working via the Trend Micro Zero Day Initiative, for identifying and responsibly disclosing the issue. The collaboration demonstrates the role of external researchers and bug bounty frameworks in safeguarding complex enterprise tools before exploitation occurs. Organisations using TeamViewer's Remote Management suite should prioritise deployment of version 15.67 or later across all Windows hosts. Administrators are advised to verify versions in service and host deployments, ensure no components are skipped, and monitor vendor security bulletins for further updates. Enhanced monitoring of log files for MSI rollback events, combined with endpoint detection systems tuned for unusual file deletion patterns, can offer interim safeguards. Those unable to immediately upgrade should consider temporarily disabling Remote Management features until patching is confirmed.
