Latest news with #FortiOS
Techday NZ
3 days ago
- Techday NZ
Rapid7 Q1 2025 incident response findings
Rapid7's Q1 2025 incident response data highlights several key initial access vector (IAV) trends, shares salient examples of incidents investigated by the Rapid7 Incident Response (IR) team, and digs into threat data by industry as well as some of the more commonly seen pieces of malware appearing in incident logs. Is having no MFA solution in place still one of the most appealing vulnerabilities for threat actors? Will you see the same assortment of malware regardless of whether you work in business services or media and communications? And how big a problem could one search engine query possibly be, anyway? The answer to that last question is "very," as it turns out. As for the rest… Initial access vectors Below, we highlight the key movers and shakers for IAVs across cases investigated by Rapid7's IR team. While you'll notice a fairly even split among several vectors such as exposed remote desktop protocol (RDP) services and SEO poisoning, one in particular is clearly the leader of the pack where compromising organisations is concerned: stolen credentials to valid/active accounts with no multi-factor authentication (MFA) enabled. Valid account credentials — with no MFA in place to protect the organisation should they be misused — are still far and away the biggest stumbling block for organisations investigated by the Rapid7 IR team, occurring in 56% of all incidents this first quarter. Exposed RDP services accounted for 6% of incidents as the IAV, yet they were abused by attackers more generally in 44% of incidents. This tells us that third parties remain an important consideration in an organisation's security hygiene. Valid accounts / no MFA: Top of the class Rapid7 regularly bangs the drum for tighter controls where valid accounts and MFA are concerned. As per the key findings, 56% of all incidents in Q1 2025 involved valid accounts / no MFA as the initial access vector. In fact, there's been very little change since Q3 2024, and as good as no difference between the last two quarters: Vulnerability exploitation: Cracks in the armour Rapid7's IR services team observed several vulnerabilities used, or likely to have been used, as an IAV in Q1 2025. CVE-2024-55591 for example, the IAV for an incident in manufacturing, is a websocket-based race condition authentication bypass affecting Fortinet's FortiOS and FortiProxy flagship appliances. Successful exploitation results in the ability to execute arbitrary CLI console commands as the super_admin user. The CVE-2024-55591 advisory was published at the beginning of 2025, and it saw widespread exploitation in the wild. One investigation revealed attackers using the above flaw to exploit vulnerable firewall devices and create local and administrator accounts with legitimate-looking names (e.g., references to "Admin", "I.T.", "Support"). This allowed access to firewall dashboards, which may have contained useful information about the devices' users, configurations, and network traffic. Policies were created which allowed for leveraging of remote VPN services, and the almost month-long dwell time observed in similar incidents may suggest initial access broker (IAB) activity, or a possible intended progression to data exfiltration and ransomware. Exposed RMM tooling: A path to ransomware As noted above, 6% of IAV incidents were a result of exposed remote monitoring and management (RMM) tooling. RMMs, used to remotely manage and access devices, are often used to gain initial access, or form part of the attack chain leading to ransomware. One investigation revealed a version of SimpleHelp vulnerable to several critical privilege escalation and remote code execution vulnerabilities, which included CVE-2024-57726, CVE-2024-57727, and CVE-2024-57728. These CVEs target the SimpleHelp remote access solution. Exploiting CVE-2024-57727 permits an unauthenticated attacker to leak SimpleHelp "technician" password hashes. If one is cracked, the attacker can log-in as a remote-access technician. Lastly, the attacker can exploit CVE-2024-57726 and CVE-2024-57728 to elevate to SimpleHelp administrator and trigger remote code execution, respectively. CVE-2024-57727 was added to CISA KEV in February 2025. The vulnerable RMM solution was used to gain initial access and threat actors used PowerShell to create Windows Defender exclusions, with the ultimate goal of deploying INC Ransomware on target systems. SEO poisoning: When a quick search leads to disaster SEO poisoning, once the scourge of search engines everywhere, may not be high on your list of priorities. However, it still has the potential to wreak havoc on a network. Here, the issue isn't so much rogue entries in regular search results, but instead the paid sponsored ads directly above typical searches. Note how many sponsored results sit above the genuine site related to this incident: Multiple sponsored searches above the official (and desired) search result This investigation revealed a tale of two search results, where one led to a genuine download of a tool designed to monitor virtual environments, and the other led to malware. When faced with both options, a split-second decision went with the latter and what followed was an escalating series of intrusion, data exfiltration and—eventually—ransomware. An imitation website offering malware disguised as genuine software On the same day of initial compromise, the attacker moved laterally using compromised credentials via RDP, installing several RMM tools such as AnyDesk and SplashTop. It is likely that the threat actor searched for insecurely stored password files and targeted password managers. They also attempted to modify and/or disable various security tools in order to evade detection, and create a local account to enable persistence and avoid domain-wide password resets. An unauthorised version of WinSCP was used to exfiltrate a few hundred GB of sensitive company data from several systems, and with this mission accomplished only a few tasks remained. The first: attempting to inhibit system recovery by tampering with the Volume Shadow Copy Service (VSS), clearing event logs, deleting files, and also attempting to target primary backups for data destruction. The second: deployment of Qilin ransomware and a blackmail note instructing the victim to communicate via a TOR link lest the data be published to their leak site. Qilin ranked 7 in our top ransomware groups of Q1 2025 for leak post frequency, racking up 111 posts from January through March. Known for double-extortion attacks across healthcare, manufacturing, and financial sectors, Qilin (who, despite their name, are known not to be Chinese speakers, but rather Russian-speaking) has also recently been seen deployed by North Korean threat actors Moonstone Sleet. Attacker behaviour observations Bunnies everywhere: Tracking a top malware threat BunnyLoader, the Malware as a Service (MaaS) loader possessing a wealth of capabilities including clipboard and credential theft, keylogging, and the ability to deploy additional malware, is one of the most prolific presences Rapid7 has seen this first quarter of 2025. In many cases, it's also daisy-chained to many of the other payloads and tactics which make repeated appearances. To really drive this message home: BunnyLoader is the most observed payload across almost every industry we focused on. Whether we're talking manufacturing, healthcare, business services or finance, it's typically well ahead of the rest of the pack. Here are our findings across the 5 most targeted industries of Q1: BunnyLoader is in pole position not only for the 5 industries shown above, but across 12 of 13 industries overall, with 40% of all incidents observed involving this oft-updated malware. Just over half of that 40% total involved a fake CAPTCHA (commonly used for the purpose of victims executing malicious code), with malicious / compromised sites appearing in a quarter of BunnyLoader cases. Rogue documents, which may be booby-trapped with malware or pave the way for potential phishing attacks, bring up the rear at just 9% of all BunnyLoader appearances recorded. First offered for sale in 2023 for a lifetime-use cost of $250, its continued development and large range of features make it an attractive proposition for rogues operating on a budget. Targeted organisations: The manufacturing magnet Manufacturing organisations were targeted in more than 24% of incidents the Rapid7 IR team observed, by far the most targeted industry in Q1 based on both Rapid7's ransomware analytics and IR team observations. The chart below compares Rapid7's industry-wide data (comprising a wide range of payloads and tactics) with ransomware leak post specific data. In both cases, manufacturing is a fair way ahead of other industries; this reflects its status as one of the most popular targets for ransomware groups over the last couple of years. The manufacturing industry is an attack vector for nation states because it is an important component of global trade. It is also an area that has many legacy and older, operational technologies (OT). Combine unpatched legacy systems with complicated supply chains, and you have a risk that nation state actors will find an attractive target. This is especially the case when considering that many manufacturing organisations have critical contracts with governments, and attacks can cause severe disruption if they're not speedily resolved. Conclusion Q1 2025 resembles a refinement of successful tactics, as opposed to brand new innovations brought to the table. Our Q1 ransomware analytics showed threat actors making streamlined tweaks to a well-oiled machine, and we find many of the same "evolution, not revolution" patterns occurring here. This progression is particularly applicable in the case of initial access via valid accounts with no MFA protection. We expect to see no drop in popularity while businesses continue to leave easy inroads open and available to skilled (and unskilled) attackers. In addition, the risk of severe compromise stemming from seemingly harmless online searches underscores the necessity for organisations to reexamine basic security best practices, alongside deploying robust detection and response capabilities. Businesses addressing these key areas for concern will be better equipped to defend against what should not be an inevitable slide into data exfiltration and malware deployment.
Yahoo
29-05-2025
- Business
- Yahoo
3 Key Reasons to Buy Fortinet Stock Beyond its 11% Year-to-Date Rise
Fortinet FTNT shares have gained 10.6% in the year-to-date (YTD) period, outperforming the Zacks Computer and Technology sector and the S&P 500 index's decline of 1.7% and 0.4%, outperformance can be attributed to strong execution across key growth areas like SASE, AI-driven security operations and OT security. Record margins, robust free cash flow and rising enterprise adoption have reinforced investor confidence, positioning Fortinet as a resilient, high-growth player in an otherwise cautious tech rally does not tell the whole story. Let's break down three key strengths that reveal why the stock is a compelling investment in 2025. Image Source: Zacks Investment Research The U.S. tariff landscape continues to evolve, but based on current conditions, there's no material impact expected on FTNT in the near term. Despite broader geopolitical uncertainties, Fortinet is still seeing strong demand for its cybersecurity offerings. The company's pipeline remains healthy, with stable close rates and sales cycles that are well within historical revenues in the first quarter of 2025 rose 14% year over year to $1.54 billion. Product revenues reached $459 million, up 12% year over year, supported by double-digit growth in both hardware and software solutions. FortiGate hardware performed particularly well across low-end and high-end models, while time-based software licenses grew more than 30%.Total billings grew 14% year over year to $1.6 billion, with unified SASE and AI-driven SecOps contributing 18% and 29% growth, respectively. Gross margin expanded 380 basis points to 81.9%, and operating margin reached a record 34.2% in the first quarter. Fortinet also added more than 6,300 new customers during the quarter, up 14% from the prior year, signaling continued momentum despite broader market headwinds. The cybersecurity market is extremely competitive and characterized by rapid technological change. Among others, Fortinet's competitors include Palo Alto Networks PANW, Cisco Systems CSCO and CrowdStrike CRWD. Shares of Palo Alto Networks, Cisco Systems and CrowdStrike have returned 3.2%, 7% and 37%, respectively, Alto Networks has partnered with NVIDIA to build AI-driven private 5G security solutions, reflecting its commitment to next-generation technologies. Cisco Systems has also deepened its collaboration with NVIDIA, aiming to deliver AI-ready data center networking solutions, which has been a game changer for the company. Meanwhile, CrowdStrike is seeing strong momentum with its Falcon platform, promoted as an 'AI-native SOC,' with growing adoption of its Charlotte AI for detection, triage, workflows, and differentiates itself from these competitors with its single, organically developed FortiOS, including its firewall, SD-WAN, secure web gateway, CASB and DLP. This unified design drove 18% growth in SASE billings and 26% in SASE ARR in the first quarter of 2025, with enterprise penetration reaching 11%, up nearly 10% sequentially. FTNT's approach reduces complexity and cost, enabling faster adoption and stronger performance. As demand shifts toward integrated, scalable platforms, Fortinet is gaining ground across secure networking, SASE and AI-driven SecOps. Fortinet continues to strengthen its long-term position in AI and firewall solutions. The company now holds over 500 issued and pending AI patents, more than any peer, and has integrated AI into a dozen products, including FortiAI Assist and FortiAI Protect. Recently, Fortinet introduced the FortiGate 700G, a high-performance firewall for mid-size enterprises, delivering up to 10x performance gains over competitors via proprietary ASIC technology, while supporting a hybrid mesh firewall architecture through its unified FortiOS platform. This launch enhances Fortinet's competitive positioning in secure networking and is expected to drive further adoption among performance-focused enterprise customers. Fortinet expects revenues for the second quarter of 2025 in the range of $1.59 billion to $1.65 billion, which represents growth of 13% at the midpoint. It anticipates non-GAAP earnings per share in the band of 58-60 Zacks Consensus Estimate for second-quarter 2025 revenues is pegged at $1.62 billion, suggesting 12.96% year-over-year consensus mark for second-quarter 2025 earnings is pegged at 59 cents per share, which has been revised upward by a penny over the past 30 days, indicating 3.51% year-over-year growth. Fortinet's earnings beat the Zacks Consensus Estimate in each of the trailing four quarters, with the average surprise being 23.83%. Fortinet, Inc. price-consensus-chart | Fortinet, Inc. QuoteAlthough the company's Price/Book ratio of 40.72X is ahead of the Zacks Security industry average of 23.64X, the premium valuation is justified by Fortinet's strong market position, its fully integrated platform strategy and customer expansion across all its segments, all of which signal long-term growth and sustained competitive advantage. Image Source: Zacks Investment Research Fortinet's YTD gains reflect strong execution and a clear focus on long-term growth. The company is steadily expanding its customer base and delivering consistent results, even in an uncertain macro environment. New product introductions, like the FortiGate 700G, highlight its commitment to performance and innovation. Operating margins remain strong, and free cash flow continues to support its financial stability. While the stock trades at a premium, that pricing aligns with Fortinet's leadership in the cybersecurity space and its growth currently carries a Zacks Rank #2 (Buy) and has a Growth Score of A, a favorable combination that offers a strong investment opportunity, per the Zacks proprietary methodology. You can see the complete list of today's Zacks #1 Rank (Strong Buy) stocks here. Want the latest recommendations from Zacks Investment Research? Today, you can download 7 Best Stocks for the Next 30 Days. Click to get this free report Cisco Systems, Inc. (CSCO) : Free Stock Analysis Report Fortinet, Inc. (FTNT) : Free Stock Analysis Report Palo Alto Networks, Inc. (PANW) : Free Stock Analysis Report CrowdStrike (CRWD) : Free Stock Analysis Report This article originally published on Zacks Investment Research ( Zacks Investment Research Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Channel Post MEA
21-05-2025
- Business
- Channel Post MEA
Fortinet Launches FortiGate 700G Series Firewalls For Campus Networks
Fortinet has announced the FortiGate 700G series, a next-generation firewall (NGFW) purpose-built for the modern campus. Powered by Fortinet's proprietary Network Processor 7 (NP7), Security Processor 5 (SP5) ASIC, and FortiOS, Fortinet's unified operating system, the FortiGate 700G series delivers up to 7x higher firewall throughput, 4x better threat protection, and 7x lower power consumption than competitor offerings. With support for advanced networking, FortiGuard AI-Powered Security Services, and new FortiOS enhancements, including post-quantum cryptography readiness, FortiAI-Protect for AI-driven threat detection, and generative AI (GenAI) risk assessment, the FortiGate 700G helps organizations reduce risk, optimize performance, and future-proof hybrid IT environments. 'With the FortiGate 700G series, we're delivering more than just industry-leading performance that customers have come to expect from Fortinet—we're equipping organizations with advanced capabilities to stay ahead of current and emerging cyberthreats,' said Nirav Shah, Senior Vice President, Products and Solutions, at Fortinet. 'From AI-powered threat detection and GenAI risk mitigation with FortiAI-Protect to post-quantum cryptography readiness built into FortiOS, this new next-generation firewall series helps our customers consolidate infrastructure, reduce cyber risk, and confidently build for the future.' FortiGate 700G: Industry-leading Performance with AI-Powered Security Today's enterprises are under pressure to scale operations, secure expanding attack surfaces, and manage increasingly sophisticated cyberthreats while reducing costs and maintaining efficiency. The FortiGate 700G series is engineered to meet these demands, offering: Unmatched performance and security: Delivering 7x higher firewall throughput (164 Gbps) and 4x better threat protection (26 Gbps) than the industry average, the FortiGate 700G series ensures businesses maintain high-speed, secure operations. Delivering 7x higher firewall throughput (164 Gbps) and 4x better threat protection (26 Gbps) than the industry average, the FortiGate 700G series ensures businesses maintain high-speed, secure operations. Energy resilience through ultra-efficient design: The FortiGate 700G series enables continuous security even in energy-constrained or sustainability-focused environments. Consuming 7x fewer watts per Gbps than the industry average, the FortiGate 700G series sets the standard for energy efficiency and significantly reduces operational costs. The FortiGate 700G series enables continuous security even in energy-constrained or sustainability-focused environments. Consuming 7x fewer watts per Gbps than the industry average, the FortiGate 700G series sets the standard for energy efficiency and significantly reduces operational costs. Enhanced threat detection and response with AI-powered security: As attackers increasingly weaponize AI and automate cyberattacks, FortiGuard AI-Powered Security Services, enhanced by FortiAI-Protect, enables organizations to detect and block emerging, unknown, and increasingly sophisticated threats. FortiAI-Protect also delivers contextual risk assessments and enforces access controls for third-party GenAI applications, providing visibility into shadow AI usage across business groups and helping improve the overall data security posture of organizations. As attackers increasingly weaponize AI and automate cyberattacks, FortiGuard AI-Powered Security Services, enhanced by FortiAI-Protect, enables organizations to detect and block emerging, unknown, and increasingly sophisticated threats. FortiAI-Protect also delivers contextual risk assessments and enforces access controls for third-party GenAI applications, providing visibility into shadow AI usage across business groups and helping improve the overall data security posture of organizations. Post-quantum cryptography readiness: New FortiOS capabilities help protect sensitive data against quantum-era threats by enabling quantum-resistant encryption, algorithm stacking for enhanced protection, and a seamless transition to post-quantum security, ideal for organizations in finance, healthcare, government, and other sectors handling long-term sensitive information. New FortiOS capabilities help protect sensitive data against quantum-era threats by enabling quantum-resistant encryption, algorithm stacking for enhanced protection, and a seamless transition to post-quantum security, ideal for organizations in finance, healthcare, government, and other sectors handling long-term sensitive information. Support for a wide range of network interfaces, ranging from 5GE to 25GE: Ensuring the flexibility to connect various devices and topologies, the FortiGate 700G series enables organizations to seamlessly adapt to developing technologies and accommodate future upgrades without costly overhauls. Ensuring the flexibility to connect various devices and topologies, the FortiGate 700G series enables organizations to seamlessly adapt to developing technologies and accommodate future upgrades without costly overhauls. Deeper protections for critical system files: FortiSentry is a unique out-of-band hardware module that provides continuous, non-intrusive file-system monitoring, adding another layer of protection to detect and prevent unauthorized access to critical system files. 0 0
Yahoo
07-05-2025
- Business
- Yahoo
Fortinet Expands Hybrid Mesh Firewall Portfolio with FortiGate 700G
Fortinet, Inc. New FortiGate series delivers scalable, high-performance security for the modern campus, now enhanced with FortiOS post-quantum capabilities and FortiAI-Protect for advanced threat detection and GenAI risk mitigation SUNNYVALE, Calif., May 07, 2025 (GLOBE NEWSWIRE) -- Fortinet® (NASDAQ: FTNT), the global cybersecurity leader driving the convergence of networking and security, today announced the FortiGate 700G series, a next-generation firewall (NGFW) purpose-built for the modern campus. Powered by Fortinet's proprietary Network Processor 7 (NP7), Security Processor 5 (SP5) ASIC, and FortiOS, Fortinet's unified operating system, the FortiGate 700G series delivers up to 7x higher firewall throughput, 4x better threat protection, and 7x lower power consumption than competitor offerings. With support for advanced networking, FortiGuard AI-Powered Security Services, and new FortiOS enhancements, including post-quantum cryptography readiness, FortiAI-Protect for AI-driven threat detection, and generative AI (GenAI) risk assessment, the FortiGate 700G helps organizations reduce risk, optimize performance, and future-proof hybrid IT environments. 'With the FortiGate 700G series, we're delivering more than just industry-leading performance that customers have come to expect from Fortinet—we're equipping organizations with advanced capabilities to stay ahead of current and emerging cyberthreats,' said Nirav Shah, Senior Vice President, Products and Solutions, at Fortinet. 'From AI-powered threat detection and GenAI risk mitigation with FortiAI-Protect to post-quantum cryptography readiness built into FortiOS, this new next-generation firewall series helps our customers consolidate infrastructure, reduce cyber risk, and confidently build for the future.' FortiGate 700G: Industry-leading Performance with AI-Powered Security Today's enterprises are under pressure to scale operations, secure expanding attack surfaces, and manage increasingly sophisticated cyberthreats while reducing costs and maintaining efficiency. The FortiGate 700G series is engineered to meet these demands, offering:
Yahoo
06-02-2025
- Business
- Yahoo
Fortinet Delivers Unmatched Security and Efficient Network Performance for the Distributed Enterprise with New Next-Gen Firewalls
New FortiGate G series next-gen firewalls empower customers to strengthen threat protection and future-proof IT infrastructure News Summary SUNNYVALE, Calif., Feb. 06, 2025 (GLOBE NEWSWIRE) -- Fortinet® (NASDAQ: FTNT), the global cybersecurity leader driving the convergence of networking and security, today announced the FortiGate 70G, FortiGate 50G, and FortiGate 30G, the latest G series next-generation firewalls (NGFWs) designed to meet the evolving technology and business demands of today's distributed enterprises. Powered by Fortinet's proprietary ASIC technology and the unified Fortinet operating system, FortiOS, the FortiGate G series delivers industry-leading security with unmatched performance. These features, combined with advanced networking support and FortiGuard AI-Powered Security Services, reduce the risk of successful cyberattacks and allow customers to future-proof IT infrastructure while minimizing operational costs and environmental impact. 'For nearly 25 years, we have set the standard for fortifying enterprise networks,' said Nirav Shah, Senior Vice President, Products and Solutions at Fortinet. 'By completing the FortiGate G series with the latest ASIC and FortiOS innovation, we give distributed enterprises cutting-edge tools like AI-powered security services and GenAI for network and security operations centers without compromising performance or sustainability needs. Our customers trust that Fortinet will continue redefining the standard for next-generation firewalls by delivering superior security effectiveness, greater energy efficiency, and unmatched performance for years to come.' FortiGate G Series: Industry-Leading Performance with AI-Powered SecurityToday's enterprises are under pressure to scale operations, secure expanding attack surfaces, and manage increasingly sophisticated cyberthreats while reducing costs and maintaining efficiency. The FortiGate G series is engineered to meet these demands, offering: Cutting-edge security with unmatched power efficiency: The FortiGate G series delivers superior protection without compromising performance. For example, the new FortiGate 70G delivers up to 11x higher IPsec VPN and 7x higher firewall throughput than the industry average while consuming 62x fewer watts per Gbps of IPsec VPN throughput and 42x fewer watts per Gbps of firewall throughput. Faster identification, containment, and mitigation of threats: FortiGuard AI-Powered Security Services provides real-time, automated threat detection and response to defend against advanced ransomware, malware, and zero-day exploits. FortiAI for enhanced cybersecurity operations: FortiAI, the Fortinet generative AI assistant, helps automate tasks, provides actionable insights, and improves threat detection. FortiGate customers can use FortiAI to support incident analysis, threat remediation, and playbook creation, empowering them to streamline security processes and strengthen their cybersecurity posture. The power of the new FortiGate G series and FortiGuard AI-Powered Security Services is showcased in the below Security Compute Rating tables, which compare the top firewalls on the market against the target performance numbers of the FortiGate 70G, FortiGate 50G, and FortiGate 30G: FortiGate 70G Specification FortiGate 70G Security Compute Rating Competitor Average Check Point 1555 Cisco MerakiMX68 JuniperSRX 300 Palo Alto NetworksPA-410 Firewall (Gbps) 10.0 7x 1.5 2.0 0.7 1.9 1.4 IPsec VPN (Gbps) 7.1 11x 0.7 1.3 0.4 0.3 0.7 Threat Protection (Gbps) 1.3 3x 0.5 0.6 0.4 0.2 0.8 Concurrent Sessions 1.4M 4x 376K 1M - 64K 64K Connections per Second 100K 10x 10K 14K - 5K 11K Power Efficiency FortiGate 70G Energy Savings Competitor Average Check Point 1555 Cisco MerakiMX68 JuniperSRX 300 Palo Alto NetworksPA-410 Max Power Consumption (Watts) 8.9 4x 35.0 17.9 79.0 24.9 18.0 Watts/Gbps Firewall Throughput 0.9 42x 36.9 9.0 112.9 13.1 12.9 Watts/Gbps IPsec VPN Throughput 1.3 62x 78.1 13.8 197.5 73.2 27.7 FortiGate 50G Specification FortiGate 50G Security Compute Rating Competitor Average Check Point1535 Cisco Meraki MX67 Juniper SRX 300 Palo Alto Network PA-410 Firewall (Gbps) 5.0 3x 1.5 2.0 0.7 1.9 1.4 IPsec VPN (Gbps) 4.5 8x 0.6 1.0 0.4 0.3 0.7 Threat Protection (Gbps) 1.1 2x 0.5 0.4 0.4 0.2 0.8 Concurrent Sessions 720K 2x 376K 1M - 64K 64K Connections per Second 85K 10x 8.8K 10.5K - 5K 11K Power Efficiency FortiGate 50G Energy Savings Competitor Average Check Point1535 Cisco Meraki MX67 Juniper SRX 300 Palo Alto Networks PA-410 Max Power Consumption (Watts) 8.9 2x 18.7 17.9 14.0 24.9 18.0 Watts/Gbps Firewall Throughput 1.8 8x 13.7 9.0 20.0 13.1 12.9 Watts/Gbps IPsec VPN Throughput 2.0 20x 38.6 18.5 35.0 73.2 27.7 FortiGate 30G Specification FortiGate 30G Security Compute Rating Competitor Average Barracudas F12 Cisco Meraki Z4 SonicWall TZ270 Watch Guard NV5 Firewall (Gbps) 4.0 4x 1.0 1.2 0.5 2.0 0.4 IPsec VPN (Gbps) 3.5 10x 0.4 0.2 0.3 0.8 0.2 Threat Protection (Gbps) 0.5 1x 0.4 0.2 0.3 0.8 - Concurrent Sessions 600K 2x 301K 80K - 750K 73K Connections per Second 30K 4x 7.5K 8K - 6K 8.5K Power Efficiency FortiGate 30G Energy Savings Competitor Average Barracudas F12 Cisco Meraki Z4 SonicWall TZ270 Watch Guard NV5 Max Power Consumption (Watts) 8.2 4x 29.5 45.0 42.0 18.9 12.0 Watts/Gbps Firewall Throughput 2.3 41x 96.6 204.5 - 25.2 60.0 Watts/Gbps IPsec VPN Throughput 16.4 7x 120.3 195.7 140.0 25.2 - Threat protection performance is measured with firewall, IPS, application control and malware protection, and logging enabled. The numbers for competitive solutions are based on publicly available sources. Other vendors may have different testing methodologies. All power consumption values are taken from external data sheets and hardware system guides using maximum power consumption. Performance information is sourced from vendor datasheets published as of February 5, 2025. Building a Strong Cybersecurity Platform Starts with the FirewallFortinet was founded on the principle of converging networking and security into a unified cybersecurity platform anchored by a single operating system. The Fortinet Security Fabric is the result of more than two decades of relentless focus on the company's platform vision to provide customers with end-to-end visibility, unified management, and automated threat intelligence sharing. All FortiGate NGFWs, including the FortiGate G series, seamlessly integrate into the Fortinet Security Fabric so customers can build a secure foundation to advance their overall security measures from adopting secure access service edge (SASE) solutions to enhancing security operations with FortiAI. Fortinet empowers organizations to evolve their cybersecurity strategy, ensuring comprehensive protection and operational efficiency at every stage of their journey. Additional Resources Learn more about the FortiGate G series. Read more about the Fortinet Security Fabric. Visit to learn about Fortinet innovation, collaboration partners, product security processes, and enterprise-grade products. Read about how Fortinet customers are securing their organizations. Learn about Fortinet's commitment to product security and integrity, including its responsible product development and vulnerability disclosure approach and policies. Follow Fortinet on X, LinkedIn, Facebook, and Instagram. Subscribe to Fortinet on our blog or YouTube. About FortinetFortinet (Nasdaq: FTNT) is a driving force in the evolution of cybersecurity and the convergence of networking and security. Our mission is to secure people, devices, and data everywhere, and today we deliver cybersecurity everywhere our customers need it with the largest integrated portfolio of over 50 enterprise-grade products. Well over half a million customers trust Fortinet's solutions, which are among the most deployed, most patented, and most validated in the industry. The Fortinet Training Institute, one of the largest and broadest training programs in the industry, is dedicated to making cybersecurity training and new career opportunities available to everyone. Collaboration with esteemed organizations from both the public and private sectors, including Computer Emergency Response Teams ('CERTS'), government entities, and academia, is a fundamental aspect of Fortinet's commitment to enhance cyber resilience globally. FortiGuard Labs, Fortinet's elite threat intelligence and research organization, develops and utilizes leading-edge machine learning and AI technologies to provide customers with timely and consistently top-rated protection and actionable threat intelligence. Learn more at the Fortinet Blog, and FortiGuard Labs. Copyright © 2025 Fortinet, Inc. All rights reserved. The symbols ® and ™ denote respectively federally registered trademarks and common law trademarks of Fortinet, Inc., its subsidiaries and affiliates. Fortinet's trademarks include, but are not limited to, the following: Fortinet, the Fortinet logo, FortiGate, FortiOS, FortiGuard, FortiCare, FortiAnalyzer, FortiManager, FortiASIC, FortiClient, FortiCloud, FortiMail, FortiSandbox, FortiADC, FortiAI, FortiAIOps, FortiAgent, FortiAntenna, FortiAP, FortiAPCam, FortiAuthenticator, FortiCache, FortiCall, FortiCam, FortiCamera, FortiCarrier, FortiCASB, FortiCentral, FortiCNP, FortiConnect, FortiController, FortiConverter, FortiCSPM, FortiCWP, FortiDAST, FortiDB, FortiDDoS, FortiDeceptor, FortiDeploy, FortiDevSec, FortiDLP, FortiEdge, FortiEDR, FortiExplorer, FortiExtender, FortiFirewall, FortiFlex FortiFone, FortiGSLB, FortiGuest, FortiHypervisor, FortiInsight, FortiIsolator, FortiLAN, FortiLink, FortiMonitor, FortiNAC, FortiNDR, FortiPAM, FortiPenTest, FortiPhish, FortiPoint, FortiPolicy, FortiPortal, FortiPresence, FortiProxy, FortiRecon, FortiRecorder, FortiSASE, FortiScanner, FortiSDNConnector, FortiSIEM, FortiSMS, FortiSOAR, FortiSRA, FortiStack, FortiSwitch, FortiTester, FortiToken, FortiTrust, FortiVoice, FortiWAN, FortiWeb, FortiWiFi, FortiWLC, FortiWLM, FortiXDR and Lacework FortiCNAPP. Other trademarks belong to their respective owners. Fortinet has not independently verified statements or certifications herein attributed to third parties and Fortinet does not independently endorse such statements. Notwithstanding anything to the contrary herein, nothing herein constitutes a warranty, guarantee, contract, binding specification or other binding commitment by Fortinet or any indication of intent related to a binding commitment, and performance and other specification information herein may be unique to certain environments. Media Contact: Investor Contact: Analyst Contact: Margaret ReebFortinet, Inc.408-235-7700 pr@ Aaron OvadiaFortinet, Inc. 408-235-7700investors@ Brian Greenberg Fortinet, Inc.408-235-7700analystrelations@ Sign in to access your portfolio
