Enhanced Attack Surface Management Enables Early Threat Detection, Rapid Investigation, and Response

AI is changing not only the attack landscape but also the rules of the game, helping attackers "work smarter not harder," according to Derek Manky, Fortinet VP of global threat intelligence. Attackers have always found new ways to compromise networks, but executing successful attacks hasn't always been straightforward. Today's adversaries, however, have begun to leverage generative AI and Cybercrime-as-a-Service to accelerate every stage of their attacks. These new tools and tactics have simplified the creation of highly sophisticated phishing campaigns using believable content, automated the process of finding system vulnerabilities, and enabled them to create effective exploits faster than ever, resulting in increasingly complex and efficient cyberattacks.

The speed and scale of these new AI-powered attacks weigh heavily on SOC analysts, requiring that they take a more proactive approach to cyberthreats. They need to be able to look beyond the organization's traditional perimeter to where malicious actors operate to identify potential and imminent threats before they target the network, such as discovering new phishing campaigns targeting customers and executives before they are launched, locating leaked credentials and exploited vulnerabilities, and identifying third-party vendors that have been the victims of ransomware.

To help analysts and threat hunters discover potential threats faster, Fortinet has made several new enhancements to our FortiRecon service. These enhancements provide more threat visibility while simplifying investigation and response.

Attack Surface Management for Early Detection and Mitigation of Internal and External Risks

FortiRecon is Fortinet's powerful digital risk protection (DRP) service powered by our advanced AI- and human-gathered intelligence systems. This SaaS-based service is part of the Fortinet SecOps platform and combines three robust modules: Attack Surface Management (ASM), Brand Protection, and Adversary Centric Intelligence (ACI). With this latest FortiRecon release, we have enhanced our ASM module with a new Internal Attack Surface Management Service (IASM) that provides analysts with more comprehensive and continuous exposure detection. Easily added to the FortiRecon External Attack Surface Management module, this new service gives analysts extended visibility and insight into internal risks that can be exploited by threat actors for persistence and lateral movement once inside the network.