Latest news with #DLP
Yahoo
2 days ago
- Business
- Yahoo
FTNT's Unified SASE Strategy Drives Growth: Hold or Fold the Stock?
Fortinet FTNT is strengthening its enterprise cybersecurity position through a unified Secure Access Service Edge (SASE) strategy that combines next-generation firewall, SD-WAN, secure web gateway and Data Loss Prevention (DLP) into a single OS, FortiOS. This helps organizations streamline security while cutting complexity and costs. Fortinet also offers sovereign SASE solutions for regulated to Fortinet, the typical SASE journey starts with FortiGate firewalls, then expands to SD-WAN and FortiSASE. By the first quarter of 2025, 73% of large enterprises had adopted Fortinet's SD-WAN, while FortiSASE penetration rose to 11%, up nearly 10 points the first quarter, unified SASE billings grew 18% year over year, representing 25% of total billings. Fortinet cited strong momentum across industries, with several major wins displacing incumbent SASE vendors due to better performance, integration and cost investors should take a closer look at what is working in Fortinet's favor and what is holding it back, explaining why FTNT stock is a hold for now. Let's delve deeper into the company's fundamentals. Fortinet is strengthening its unified SASE architecture with cloud-native solutions to secure hybrid and multi-cloud environments. Updates to FortiCNAPP and the launch of services like FortiAppSec Cloud, FortiMail Workspace Security, FortiNDR Cloud, FortiSIEM and Incident Response on AWS Marketplace support its cloud-first strategy. Enhancements to FortiMail and FortiDLP expand protection to browsers and collaboration apps, which are key parts of the Secure Web Gateway and DLP in SASE. These AI-driven, fabric-integrated upgrades will help drive FTNT's revenues in the near term. The cybersecurity market is extremely competitive and characterized by rapid technological change. Among others, Fortinet's competitors include Palo Alto Networks PANW, Zscaler ZS and CrowdStrike CRWD. Palo Alto Networks has driven growth through strategic partnerships, including an expanded alliance with VMware and collaborations with Aruba Networks and others under its NextWave program. Zscaler has grown via acquisitions like Airgap Networks and Avalor, strengthening its Zero Trust and threat prediction tools. CrowdStrike continues to expand its Falcon platform, now with 29 modules, including Falcon Data Protection and AI-powered XDR features. These aggressive moves by key rivals highlight the intense competition Fortinet faces in maintaining its market share and growth momentum. Fortinet shares have gained 9.8% in the year-to-date (YTD) period, underperforming the Zacks Security industry's growth of 23.8%, but outperforming the Zacks Computer and Technology sector's return of 4.5%.Fortinet's underperformance compared with the industry is driven by rising competitive pressure in the fast-growing cybersecurity space. While progress in AI and SASE offers support, customer hesitancy and macro uncertainties have weighed on investor of Palo Alto Networks, Zscaler and CrowdStrike have returned 12.4%, 73.1% and 44%, respectively, YTD. Image Source: Zacks Investment Research Fortinet's valuation may be a concern for some investors. The stock is trading at a significant premium compared to the broader Zacks Security industry. As of the latest data, FTNT's Price/Book ratio hovers around 40.40, well above the industry's 24.95. The Value Score of F further reinforces a stretched valuation for Fortinet at this moment. Image Source: Zacks Investment Research Fortinet expects revenues for the second quarter of 2025 in the range of $1.59 billion to $1.65 billion, which suggests growth of 13% at the midpoint. It anticipates non-GAAP earnings per share in the band of 58-60 cents. Fortinet maintained a cautious outlook for the second quarter, citing macroeconomic and geopolitical uncertainties. While close rates and sales trends remained solid, sales teams were hesitant to raise expectations. The company also noted customer hesitancy in finalizing purchases, prompting a prudent approach to guidance despite steady demand. The Zacks Consensus Estimate for second-quarter 2025 revenues is pegged at $1.62 billion, suggesting 12.94% year-over-year growth. The consensus mark for second-quarter 2025 earnings is pegged at 59 cents per share, which has remained steady over the past 30 days, indicating 3.51% year-over-year growth. Fortinet's earnings beat the Zacks Consensus Estimate in each of the trailing four quarters, with the average surprise being 23.83%. Fortinet, Inc. price-consensus-chart | Fortinet, Inc. Quote Fortinet's strong SASE growth, new cloud-based offerings and expanding customer base show that the company is moving in the right direction. However, tough competition, premium valuation and cautious guidance suggest that the stock may not see major gains in the near term. While its long-term prospects remain solid, the stock has underperformed compared to the industry and faces clear headwinds due to macroeconomic and geopolitical uncertainties. For now, it makes sense for investors to hold their position and wait for clearer signals before considering fresh currently has a Zacks Rank #3 (Hold). You can see the complete list of today's Zacks #1 Rank (Strong Buy) stocks here. Want the latest recommendations from Zacks Investment Research? Today, you can download 7 Best Stocks for the Next 30 Days. Click to get this free report Fortinet, Inc. (FTNT) : Free Stock Analysis Report Palo Alto Networks, Inc. (PANW) : Free Stock Analysis Report Zscaler, Inc. (ZS) : Free Stock Analysis Report CrowdStrike (CRWD) : Free Stock Analysis Report This article originally published on Zacks Investment Research ( Zacks Investment Research
Zawya
3 days ago
- Business
- Zawya
Proofpoint strengthens investment in the United Arab Emirates to meet customer demand for AI-powered, compliant data security solutions
Dubai, UAE - Proofpoint, Inc., a leading cybersecurity and compliance company, today announced the general availability of its Data Security and Governance Solutions, delivered through its local data center in the United Arab Emirates. This bolsters Proofpoint's commitment to the region, meeting customer demand for AI-powered, cloud-based security solutions that help our customers in the region comply with local data residency policies and meet regulatory compliance. The company's UAE data center was initially announced in February this year during Proofpoint's Protect Tour in Dubai, during a keynote delivered by Sumit Dhawan, CEO at Proofpoint and supported by H.E. Dr. Mohamed Al Kuwaiti, Head of Cyber Security at United Arab Emirates Government. Data loss is a widespread challenge in the region. Proofpoint research shows that 94% of organizations in the UAE experienced at least one data loss incident in the past year. As a result of this, 47% admitted to suffering regulatory sanctions and fines. While UAE organizations are investing in data security solutions, less than half (46%) say they have a mature Data Loss Prevention (DLP) program in place. The way people work today exacerbates this data security challenge for organizations. With the rapid proliferation of digital communication channels and increasingly disparate data sources - and employees working across multiple communications channels and applications - organizations are faced with the challenge of effectively securing a wide sprawl of data, while addressing compliance challenges in a fast and high-efficacy way. Due to this, 88% of UAE CISOs agree that information protection and data governance are a top priority for their organization in the next year. 'Data security is a challenge that is constantly evolving in the UAE, and our main objective is to continue to help organizations protect their data, with innovative, AI-powered solutions that address data loss risks, while ensuring local regulations and compliance,' said Kenan Abu Ltaif, Regional Director, Middle East and Turkey at Proofpoint. 'We will continue to enhance our offerings for UAE-based organizations in line with the threat landscape, enabling them to roll out multi-layered, cloud-native cybersecurity protection that safeguards people and data from today's biggest threats, while keeping their data in-country.' Customers in the UAE can now benefit from Proofpoint's portfolio of Data Security and Governance Solutions, including: Digital Communications Governance (DCG), Enterprise DLP, and Insider Threat Management. About Proofpoint Proofpoint, Inc. is a leading cybersecurity and compliance company that protects organizations' greatest assets and biggest risks: their people. With an integrated suite of cloud-based solutions, Proofpoint helps companies around the world stop targeted threats, safeguard their data, and make their users more resilient against cyber attacks. Leading organizations of all sizes, including 85 percent of the Fortune 100, rely on Proofpoint for people-centric security and compliance solutions that mitigate their most critical risks across email, the cloud, social media, and the web. More information is available at
Techday NZ
20-06-2025
- Business
- Techday NZ
Most firms overestimate AI governance as privacy risks surge
Kiteworks has released its AI Data Security and Compliance Risk Survey, highlighting gaps between AI adoption and governance maturity in the Asia-Pacific (APAC) region and globally. The survey, based on responses from 461 cybersecurity, IT, risk management, and compliance professionals, reveals that only 17% of organisations have implemented technical controls that block access to public AI tools alongside data loss prevention (DLP) scanning. Despite this, 26% of respondents state that over 30% of the data employees input into public AI tools is private, and 27% confirm this figure specifically for the APAC region. These findings appear against a backdrop of rising incidents; Stanford's 2025 AI Index Report recorded a 56.4% year-on-year increase in AI privacy incidents, totalling 233 last year. According to the Kiteworks survey, only 40% of organisations restrict AI tool usage via training and audits, 20% rely solely on warnings without monitoring, and 13% lack any specific policies, leaving many exposed to data privacy risks. A disconnect between adoption and controls "Our research reveals a fundamental disconnect between AI adoption and security implementation," said Tim Freestone, Chief Strategy Officer at Kiteworks. "When only 17% have technical blocking controls with DLP scanning, we're witnessing systemic governance failure. The fact that Google reports 44% of zero-day attacks target data exchange systems undermines the very systems organisations rely on for protection." The survey indicates a persistent overconfidence among organisations regarding their AI governance maturity. While 40% of respondents say they have fully implemented an AI governance framework, Gartner's data shows only 12% of organisations possess dedicated AI governance structures, with 55% lacking any frameworks. Deloitte's research further highlights this gap, showing just 9% achieve 'Ready' level governance maturity despite 23% considering themselves 'highly prepared'. This discrepancy is compounded by industry data indicating that 86% lack visibility into AI data flows. EY's recent study suggests that technology companies continue to deploy AI at a rapid pace, with 48% already using AI agents and 92% planning increased investment—a 10% rise since March 2024—with 'tremendous pressure' to justify returns, thereby elevating incentives to adopt AI quickly but at the expense of security. "The gap between self-reported capabilities and measured maturity represents a dangerous form of organisational blindness," explained Freestone. "When organisations claiming governance discover their tracking reveals significantly more risks than anticipated according to Deloitte, and when 91% have only basic or in-progress AI governance capabilities, this overconfidence multiplies risk exposure precisely when threats are escalating." Legal sector and policy awareness According to survey data, the legal sector exhibits heightened concern about data leakage, with 31% of legal professionals identifying it as a top risk. However, implementation lags are evident, with 15% lacking policies or controls for public AI use and 19% relying on unmonitored warnings. Only 23% of organisations overall have comprehensive privacy controls and regular audits before deploying AI systems. Within legal firms, 15% had no formal privacy controls but prioritised rapid AI uptake – an improvement over the 23% average across sectors, but still significant in a sector where risk mitigation is fundamental. Thomson Reuters figures support this, reporting that just 41% of law firms have AI-related policies, despite 95% foreseeing AI as central within five years. Security controls and data exposure in APAC APAC organisations closely mirror global patterns, with 40% relying on employee training and audits, 17% utilising technical controls with DLP scanning, and 20% issuing warnings with no enforcement. Meanwhile, 11% provide only guidelines, and 12% have no policy in place. This means that 83% lack automated controls, despite the APAC region's position at the forefront of the global AI market. The exposure of private data follows global trends: 27% report that more than 30% of AI-ingested data is private, 24% report a 6–15% exposure rate, and 15% are unaware of their exposure levels. A slight improvement in visibility is indicated, which may reflect regional technical expertise. For AI governance, 40% of APAC respondents claim thorough implementation, 41% say partial implementation, while 9% have no plans, and 3% are planning to implement controls. Regulatory complexity and cross-border risks APAC's position involves navigating a complex landscape of national regulations, including China's Personal Information Protection Law, Singapore's PDPA, Japan's APPI, Australia's Privacy Act reforms, India's draft Digital Personal Data Protection Act, and South Korea's PIPA. The survey highlights that a 60% visibility gap in AI data flows in the region is particularly challenging, given the region's diversity, which limits the ability to comply with data localisation, cross-border data transfer rules, and consent requirements. Weak controls in APAC expose organisations to difficulties in monitoring compliance with China's data localisation regulations, managing Singapore-Australia digital agreements, and knowing how AI tools route data through restricted jurisdictions. Organisational strategies and gaps Regarding privacy investment, 34% of organisations employ balanced approaches that involve data minimisation and the selective use of privacy-enhancing technologies. Some 23% have comprehensive controls and audits, while 10% maintain basic policies but focus on AI innovation, and another 10% address privacy only when required by law. Meanwhile, 23% have no formal privacy controls while prioritising rapid AI adoption. Kiteworks recommends that businesses recognise the overestimation of their governance maturity, deploy automated and verifiable controls for compliance, and prepare for increasing regulatory scrutiny by quantifying and addressing any exposure gaps. "The data reveals organisations significantly overestimate their AI governance maturity," concluded Freestone. "With incidents surging, zero-day attacks targeting the security infrastructure itself, and the vast majority lacking real visibility or control, the window for implementing meaningful protections is rapidly closing."
Mid East Info
16-06-2025
- Business
- Mid East Info
Kiteworks Survey Reveals Only 17% of Organizations Have Technical Controls for AI Data Security While Over One-Quarter Report High Private Data Exposure
Organizations rush to adopt AI but fail to have commensurate security and compliance controls in place Kiteworks, which empowers organizations to effectively manage risk in every send, share, receive, and use of private data, today released findings from its AI Data Security and Compliance Risk Survey of 461 cybersecurity, IT, risk management, and compliance professionals. The survey, which was conducted by Centiment, reveals critical implementation failures: Only 17% of organizations have technical controls that block access to public AI tools combined with DLP scanning, while 26% report over 30% of data employees ingest in public AI tools is private data. These findings emerge amid a documented surge in AI-related incidents. Stanford's 2025 AI Index Report records a 56.4% year-over-year increase in AI privacy incidents, reaching 233 incidents last year.[1] The Kiteworks survey exposes how organizations remain unprepared: 40% restrict AI tool usage through training and audits, 20% rely solely on warnings without monitoring, and 13% lack any specific policies for public AI tool usage—leaving the vast majority vulnerable to emerging threats. 'Our research reveals a fundamental disconnect between AI adoption and security implementation,' said Tim Freestone, Chief Marketing Officer at Kiteworks. 'When only 17% have technical blocking controls with DLP scanning, we're witnessing systemic governance failure. The fact that Google reports 44% of zero-day attacks target data exchange systems undermines the very systems organizations rely on for protection.' Industry Benchmarks Reveal Dangerous Overconfidence Gap The Kiteworks survey exposes a critical overconfidence crisis in AI governance readiness. While one-third of survey respondents claim they have comprehensive governance controls and tracking in place, this contrasts starkly with Gartner's finding that only 12% of organizations have dedicated AI governance structures, with 55% lacking any framework whatsoever.[2] This dramatic gap between perception and reality creates unprecedented risk exposure. Deloitte's research provides even more sobering context: Only 9% of organizations achieve 'Ready' level AI governance maturity, despite 23% claiming to be 'highly prepared'—a 14-point overconfidence gap.[3] This misalignment is particularly concerning given that 86% of organizations lack visibility into AI data flows, according to industry research.[4] The rush to adopt AI without proper controls is accelerating. A recent EY survey found 48% of technology companies are already deploying AI agents, with 92% planning to increase AI spending—a 10% jump from March 2024.[5] Yet this enthusiasm comes with what EY calls 'tremendous pressure' to demonstrate ROI, creating incentives to prioritize speed over security. 'The gap between self-reported capabilities and measured maturity represents a dangerous form of organizational blindness,' explained Patrick Spencer, VP of Corporate Marketing and Research at Kiteworks. 'When organizations claiming governance discover their tracking reveals significantly more risks than anticipated according to Deloitte, and when 91% have only basic or in-progress AI governance capabilities, this overconfidence multiplies risk exposure precisely when threats are escalating.' Legal Sector Exemplifies Implementation-Awareness Gap The Kiteworks survey found legal professionals report the highest concern about data leakage at 31%, yet implementation remains weak: 15% have no specific policies or controls regarding the use of public AI tools with company data, while 19% rely on unmonitored warnings. This implementation gap becomes more pronounced in privacy investment strategies. While 23% of all organizations maintain comprehensive privacy controls with regular audits before any AI system deployment, only 15% of legal firms have fallen into the trap of having no formal privacy controls while prioritizing rapid AI adoption—an 8-point improvement over the 23% average across all sectors yet still concerning given their fiduciary duties. The disconnect aligns with Thomson Reuters data showing only 41% of law firms have AI policies despite 95% expecting AI to become central within five years.[6] This gap between current readiness and future expectations in the legal sector—an industry built on precedent and risk mitigation—exemplifies the broader organizational tendency to defer critical security implementations while embracing transformative technologies. AI Security Gap: When Perception Meets Reality The survey's finding that only 17% have implemented technical controls that block access to public AI tools combined with DLP scanning becomes more concerning given the evolving threat landscape. Google's research reveals 44% of zero-day vulnerabilities target data exchange systems, with 60% of enterprise-targeted zero days exploiting security and networking tools—the very systems meant to protect sensitive data. Despite awareness of risks, the Kiteworks survey found organizations remain deeply divided on addressing vulnerabilities: 34% report using a balanced approach with data minimization and selective privacy-enhancing technologies 23% maintain comprehensive privacy controls with regular audits 10% have basic privacy policies but prioritize AI innovation 10% address privacy concerns reactively, focusing on compliance only when legally required 23% have no formal privacy controls and prioritize rapid AI adoption Based on the convergence of weak controls, limited visibility, and escalating threats, organizations must: Acknowledge Reality: Recognize that self-assessed governance may significantly overstate actual maturity based on industry benchmarks Deploy Verifiable Controls: Implement automated governance tracking and controls that can demonstrate compliance, not just claim it Prepare for Regulatory Scrutiny: Quantify exposure gaps and implement measurable improvements 'The data reveals organizations significantly overestimate their AI governance maturity,' concluded Freestone. 'With incidents surging, zero-day attacks targeting the security infrastructure itself, and the vast majority lacking real visibility or control, the window for implementing meaningful protections is rapidly closing.' [1] 'The 2025 AI Index Report,' Stanford University, 2025. [2] 'AI Governance Frameworks for Responsible AI,' Gartner, March 20, 2023. [3] 'New Deloitte survey finds expectations for Gen AI remain high, but many are feeling pressure to quickly realize value while managing risks,' Deloitte, January 15, 2024. [4] 'Flying blind: Only 14 percent of companies surveyed have a comprehensive overview of generative AI usage,' LeanIX, June 18, 2024. [5] 'EY survey reveals that technology companies are setting the pace of agentic AI – will others follow suit?' EY, May 14, 2025. [6] '2025 Generative AI in Professional Services Report,' Thomson Reuters, February 2025.
USA Today
12-06-2025
- Sport
- USA Today
Detroit Lions Podcast post-OTA video mailbag
Detroit Lions Podcast post-OTA video mailbag Detroit Lions OTAs are over, which makes it a good time for the latest edition of the Detroit Lions Podcast video mailbag. With this week's minicamp canceled due to the Lions' participation in the Hall of Fame Game, the team is off until late July. The podcast Patreon channel had some questions about the team and the OTAs during the spring, and I did my best to answer them. Among the topics: Projecting a starting offensive line, or at least the battles First impressions of the new coordinators Undrafted rookie most likely to stick Outside free agents As always, an audio-only version of the DLP is available from your favorite podcast provider.
