Latest news with #Lacework
Tahawul Tech
23-06-2025
- Business
- Tahawul Tech
Fortinet upgrades CNAPP, expands solution availability via AWS Marketplace
New Lacework FortiCNAPP innovations and expanded solution availability in AWS Marketplace accelerate full application life-cycle protection, threat detection, and response. Abu Dhabi — Fortinet, a global cybersecurity leader driving the convergence of networking and security, announced powerful updates to Lacework FortiCNAPP at its' Security Day in Abu Dhabi on Monday. Alain Penel, VP of Middle East, Turkey & CIS at Fortinet: 'Whether you are born in the cloud or migrating business workloads, Fortinet delivers a unified cloud native application protection platform to empower organisations who adopt a multi-cloud strategy – securing their workloads, applications, and environments with agnostic visibility. This includes posture management and runtime security across the entire CICD lifecycle without compromising performance or agility. 'Fortinet is expanding its security cloud delivered offerings on AWS marketplace with FortiNDR, FortiSIEM, and FortiAppSec to provide real-time detection, contextual enterprise-wide visibility, cloud threat hunting, automated response and application security at cloud speed and scale.' The company also announced that the FortiAppSec Cloud service, FortiMail Workspace Security, FortiNDR Cloud, FortiSIEM, and Fortinet Incident Response services are now available in AWS Marketplace, a digital catalog that helps you find, buy, deploy, and manage software, data products, and professional services from thousands of vendors. 'Fortinet is committed to accelerating secure cloud transformation for our customers,' said Nirav Shah, Senior Vice President, Products and Solutions at Fortinet. 'By making more of our services available in AWS Marketplace and enhancing leading cloud-native solutions like Lacework FortiCNAPP and FortiAppSec Cloud, we're making it easier than ever for organisations to protect every cloud workload, application, and network edge.' Fortinet has enhanced Lacework FortiCNAPP to deliver even stronger protection for cloud-native applications across their entire life cycle. These updates reinforce FortiCNAPP as an industry-leading, cloud-native security platform designed to deliver faster detection, deeper insights, and simplified operations at scale. Real-Time CloudTrail Alerting – Enables near-instant detection of critical activity, such as compromised credentials or anomalous API behavior, by reducing AWS CloudTrail alert latency from 24 hours to under 15 minutes. Explorer (Security Graph) – Provides a visual, interactive view of attack paths and asset relationships, making pinpointing and investigating exposures, such as internet-facing vulnerabilities, easier. Agentless Windows Scanning – Supports agentless scanning for Windows workloads across any cloud, identifying vulnerabilities and secrets without requiring software deployment. This is ideal for expanding visibility and compliance with minimal overhead. Fleet Management – Delivers detailed visibility across large environments into agent inventory, health, and deployment status, helping teams monitor coverage and optimise cloud security. In addition, Fortinet expands its cloud services for web applications and APIs by introducing new service bundles that include Dynamic Application Security Testing (DAST), CDN, and SoC-as-a-Service, in addition to its AI-powered zero-day threat detection, analysis, and remediation to protect web applications and APIs. Full-Stack protection available in AWS Marketplace Fortinet has expanded the availability of its cloud security portfolio in AWS Marketplace. This provides Amazon Web Services (AWS) customers with the ability to streamline the purchase and management of more Fortinet offerings within their AWS Marketplace account. By deploying solutions on AWS, Fortinet makes it easier for customers to deploy protection, streamline procurement, and apply AWS Enterprise Discount Program (EDP) commitments. Services now available in AWS Marketplace include: FortiAppSec Cloud – Unified web application and API protection (WAAP) with web application firewall (WAF), bot management, API security, and DDoS mitigation FortiMail Workspace Security – End-to-end SaaS protection across email, browsers, and collaboration tools to stop advanced threats in platforms like Microsoft 365, Google Workspace, Slack, and Teams with a built-in, 24×7 managed incident response service to accelerate threat containment and lighten the load on SOC teams FortiNDR Cloud – AI-driven threat detection optimised for distributed cloud infrastructure FortiSIEM – Scalable log management and incident response for complex environments Fortinet has achieved the AWS Security Incident Response Specialisation, which recognises that Fortinet provides a streamlined incident response solution backed by AWS security response experts through AWS Security Incident Response. The capabilities of Fortinet's specialised cloud consulting and FortiGuard Incident Response Services teams help AWS customers strengthen their cloud security posture. Fortinet Incident Response Services are now available in AWS Marketplace, offering expert support backed by deep integration with AWS and the Fortinet Security Fabric. This underscores Fortinet's commitment to supporting customers with end-to-end security expertise—from proactive risk assessments to prompt incident handling—backed by deep integration with AWS-native tools and FortiGuard threat intelligence. Strategic shift toward unified cloud-native security This launch reinforces Fortinet's commitment to simplifying cloud security by consolidating fragmented, non-integrated solutions into a unified cloud security platform. Rather than relying on isolated point products, Fortinet delivers integrated solutions across application, network, and user layers designed to streamline management and scale efficiently in any environment. By unifying capabilities like WAAP, network detection and response (NDR), security information and event management (SIEM), cloud-native application protection platform (CNAPP), and workspace security under a single vendor and deployment model, organisations gain comprehensive cloud protection along with greater speed, cost-efficiency, and operational clarity. For those with cloud spend commitments and desire to optimise their cloud security investments, particularly in dynamic environments, Fortinet FortiFlex offers a flexible, daily usage-based licensing model that supports rapid deployment, elastic scaling, and seamless drawdown of existing cloud commitments, helping organisations protect what they need, when they need it, while only paying for what they use.
Zawya
23-06-2025
- Business
- Zawya
Fortinet strengthens code-to-cloud security with CNAPP enhancements and launches expanded solution availability in AWS Marketplace
New Lacework FortiCNAPP innovations and expanded solution availability in AWS Marketplace accelerate full application life-cycle protection and threat detection and response News Summary At its' Security Day in Abu Dhabi, Fortinet, the global cybersecurity leader driving the convergence of networking and security, has announced powerful updates to Lacework FortiCNAPP, making it easier than ever for customers to secure applications and workloads across hybrid and multi-cloud environments. The company also announced that the FortiAppSec Cloud service, FortiMail Workspace Security, FortiNDR Cloud, FortiSIEM, and Fortinet Incident Response services are now available in AWS Marketplace, a digital catalog that helps you find, buy, deploy, and manage software, data products, and professional services from thousands of vendors. 'Fortinet is committed to accelerating secure cloud transformation for our customers,' said Nirav Shah, Senior Vice President, Products and Solutions at Fortinet. 'By making more of our services available in AWS Marketplace and enhancing leading cloud-native solutions like Lacework FortiCNAPP and FortiAppSec Cloud, we're making it easier than ever for organizations to protect every cloud workload, application, and network edge.' Delivering Smarter Protection, Faster Response and Remediation Fortinet has enhanced Lacework FortiCNAPP to deliver even stronger protection for cloud-native applications across their entire life cycle. These updates reinforce FortiCNAPP as an industry-leading, cloud-native security platform designed to deliver faster detection, deeper insights, and simplified operations at scale. Real-Time CloudTrail Alerting – Enables near-instant detection of critical activity, such as compromised credentials or anomalous API behavior, by reducing AWS CloudTrail alert latency from 24 hours to under 15 minutes. Explorer (Security Graph) – Provides a visual, interactive view of attack paths and asset relationships, making pinpointing and investigating exposures, such as internet-facing vulnerabilities, easier. Agentless Windows Scanning – Supports agentless scanning for Windows workloads across any cloud, identifying vulnerabilities and secrets without requiring software deployment. This is ideal for expanding visibility and compliance with minimal overhead. Fleet Management – Delivers detailed visibility across large environments into agent inventory, health, and deployment status, helping teams monitor coverage and optimize cloud security. In addition, Fortinet expands its cloud services for web applications and APIs by introducing new service bundles that include Dynamic Application Security Testing (DAST), CDN, and SoC-as-a-Service, in addition to its AI-powered zero-day threat detection, analysis, and remediation to protect web applications and APIs. Full-Stack Protection Now Available in AWS Marketplace Fortinet has expanded the availability of its cloud security portfolio in AWS Marketplace. This provides Amazon Web Services (AWS) customers with the ability to streamline the purchase and management of more Fortinet offerings within their AWS Marketplace account. By deploying solutions on AWS, Fortinet makes it easier for customers to deploy protection, streamline procurement, and apply AWS Enterprise Discount Program (EDP) commitments. Services now available in AWS Marketplace include: FortiAppSec Cloud – Unified web application and API protection (WAAP) with web application firewall (WAF), bot management, API security, and DDoS mitigation FortiMail Workspace Security – End-to-end SaaS protection across email, browsers, and collaboration tools to stop advanced threats in platforms like Microsoft 365, Google Workspace, Slack, and Teams with a built-in, 24x7 managed incident response service to accelerate threat containment and lighten the load on SOC teams FortiNDR Cloud – AI-driven threat detection optimized for distributed cloud infrastructure FortiSIEM – Scalable log management and incident response for complex environments Fortinet has achieved the AWS Security Incident Response Specialization, which recognizes that Fortinet provides a streamlined incident response solution backed by AWS security response experts through AWS Security Incident Response. The capabilities of Fortinet's specialized cloud consulting and FortiGuard Incident Response Services teams help AWS customers strengthen their cloud security posture. Fortinet Incident Response Services are now available in AWS Marketplace, offering expert support backed by deep integration with AWS and the Fortinet Security Fabric. This underscores Fortinet's commitment to supporting customers with end-to-end security expertise—from proactive risk assessments to prompt incident handling—backed by deep integration with AWS-native tools and FortiGuard threat intelligence. A Strategic Shift toward Unified Cloud-Native Security This launch reinforces Fortinet's commitment to simplifying cloud security by consolidating fragmented, non-integrated solutions into a unified cloud security platform. Rather than relying on isolated point products, Fortinet delivers integrated solutions across application, network, and user layers designed to streamline management and scale efficiently in any environment. By unifying capabilities like WAAP, network detection and response (NDR), security information and event management (SIEM), cloud-native application protection platform (CNAPP), and workspace security under a single vendor and deployment model, organizations gain comprehensive cloud protection along with greater speed, cost-efficiency, and operational clarity. For those with cloud spend commitments and desire to optimize their cloud security investments, particularly in dynamic environments, Fortinet FortiFlex offers a flexible, daily usage-based licensing model that supports rapid deployment, elastic scaling, and seamless drawdown of existing cloud commitments, helping organizations protect what they need, when they need it, while only paying for what they use. About Fortinet Fortinet (Nasdaq: FTNT) is a driving force in the evolution of cybersecurity and the convergence of networking and security. Our mission is to secure people, devices, and data everywhere, and today we deliver cybersecurity everywhere our customers need it with the largest integrated portfolio of over 50 enterprise-grade products. Well over half a million customers trust Fortinet's solutions, which are among the most deployed, most patented, and most validated in the industry. The Fortinet Training Institute, one of the largest and broadest training programs in the industry, is dedicated to making cybersecurity training and new career opportunities available to everyone. Collaboration with esteemed organizations from both the public and private sectors, including Computer Emergency Response Teams ('CERTS'), government entities, and academia, is a fundamental aspect of Fortinet's commitment to enhance cyber resilience globally. FortiGuard Labs, Fortinet's elite threat intelligence and research organization, develops and utilizes leading-edge machine learning and AI technologies to provide customers with timely and consistently top-rated protection and actionable threat intelligence. Learn more at the Fortinet Blog, and FortiGuard Labs.
Tom's Guide
18-06-2025
- Tom's Guide
Wyze security cameras are (finally) getting a lot more secure - here's how
Wyze's devices have long been on our lists of the best home security cameras and best video doorbells, as they deliver a pretty good experience for a very low price. However, one area where they've generally been lacking in comparison to the competitors has been, ironically, security. As recently as last year, the company suffered a security breach that allowed 13,000 users to see footage from other people's cameras. Three years ago, Bitdefender discovered another breach that proved unfixable for first-generation Wyze Cams. Those screwups could hopefully be a thing of the past, as the company today announced a significant overhaul of its security procedures and protocols aimed at preventing these issues from arising ever again. Here's a rundown of what the company is doing. Mandatory 2FA: By default, all Wyze accounts will now be required to use two-factor authentication to prevent hackers from accessing a user's account without their knowledge. VerifiedView: Now, when you set up a Wyze camera, VerifiedView will embed your user ID (scrambled, of course) onto the camera itself. From then on, any video, photo, or livestream from that camera will contain your scrambled userID in the metadata. Before you (or anyone) can then access those recordings, VerifiedView will cross-check the userID on the video with that of your account. This should prevent others from seeing your videos, even if there's a failure like the one that occurred last year. Stronger logins: Wyze implemented OAuth, so you can now use trusted identity providers like Google, Apple, Facebook, or Amazon to log into your account. It also has enabled reCaptcha on Login Endpoints, Mobile Trust Device Security, Device Fingerprint Blocking, and Login Abuse Detection (User/Device/Location/IP). Behind the scenes, Wyze said it's also instituting a bug bounty program, investing more with AWS security tools (including Lacework, AWS Security Hub, AWS Inspector, AWS GuardDuty, and Amazon Q CLI), and working with NCC Group, Bitdefender, Google MASA, ioXT and ReFirm Labs to conduct penetration testing. Get instant access to breaking news, the hottest reviews, great deals and helpful tips. Outlook As someone who likes Wyze's devices but is leery of their privacy issues, these are all welcome changes indeed. Considering companies like Ring instituted mandatory 2FA five years ago, it's surprising that it's taken Wyze so long to follow suit. Whenever you're in the market for a security camera or video doorbell, it's important to take a good look at the company that makes the device. Otherwise, you might never know who's watching you.
