Releases in the past 7 days (RSS feed)

• FortiOS 6.0.1 (release notes, what’s new)
• • Enhanced multi-cloud support: enhanced GCP and OCI support, tagging of NSX VMs, AWS GuardDuty connector (cf. FortiGate VM guide)
  • IPsec VPN: support for RFC 5282 (AES-GCM algorithm in IKEv2) (cf. IPsec VPN doc, supported RFC doc)
  • SSL VPN: control visibility of SSO credentials in portal (cf. SSL VPN guide)
  • FortiAP LED blinking (cf. FortiAP Config doc)
  • Support for RFC 4389, IPv6 Neighbor Discovery Proxy (cf. Firewall handbook, supported RFC doc)
  • Monitor mode to test 802.1x on managed FortiSwitch (cf. Managed FortiSwitch doc)
  • Pre-filter to only submit suspicious files to FortiSandbox Cloud (cf. Security Profiles guide)
  • VoIP features visible in GUI when in flow mode (cf. VoIP doc)
  • Many bug fixes
• FortiAnalyzer 6.0.1 (release notes)
• • GDPR compliance: (de-)anonymization of user information
  • New SOC views for the NOC & SOC dashboards
  • Historical timeline charts in FortiView
  • Bug fixes and a resolved vulnerability (CVE-2018-1355)
• FortiManager 6.0.1 (release notes)
• • Support for Bluetooth, QoS and Hotspot 2 in AP manager
  • Support for dynamic mapping for VLANs in FortiSwitch manager
  • Support for ADOM upgrade from FortiOS 5.6 to 6.0
  • Manz bug fixes
• FortiAuthenticator 5.3.1 (release notes)
• • Simultaneous OTP via email and SMS
  • Enrolment and VPN certificate renewal via SCEP over HTTPS
  • New platform support: MS Hyper-V on Windows Server 2016
  • Serveral bug fixes
• FortiCarrier 5.4.1 (release notes)

Lifecycle Announcements – End of Orders (RSS feed)

• None

Vulnerabilities

• PSIRT advisory FG-IR-18-112: ISC BIND vulnerabilities (actually rather a list of unaffected products…)

Tools and Documentation
(Knowledge Base RSS feed, Cookbook RSS feed)

• FortiCast (16:34 min) with Alan Kaye about how product certification against FIPS-140-2 or Commen Criteria works (SoundCloud, FortiCast page, YouTube)
• • Interesting comment by another security certification engineer about CC EAL vs cPP when Alan Kaye shared the podcast on LinkedIn (link)
• Fortinet Cookbook: Protecting Against Email Impersonation in FortiMail 6.0 (link)
• Fortinet Cookbook (expert): FGCP Virtual Clustering with four FortiGates (link)
• Fortinet Video: Installing FortiClient EMS 6.0 (3:50 min on YouTube)

Acquisition

• Fortinet acquired Bradford Networks with a next-gen NAC solution for endpoints of all kinds (corporate, BYOD, IoT) (press release)
• Blog entry explaining why Fortinet enhancing its solution portfolio with network access control (Fortinet blog)
• Landing page on “Fortinet Acquires Bradford Networks” (link)
• Webinar about the acquisition of Bradford Networks by Fortinet on Wed, June 13, 5pm CEST (registration).

Security Research

• New critical information on VPNFilter, a likely state-sponsored malware with 500K+ infections recently discovered by Talos and shared through the Cyber Threat Alliance (Fortinet blog, Talos Intelligence blog )
• Detailed analysis of multi-stage cyber attacks on Russian service centers (Fortinet blog)
• Complementary analysis of an Android Spyware impersonating the popular game Fortnite. Previous analysis was published by zscaler (Fortinet blog, zscaler blog)

News / Blogs

• News about the new machine learning based threat detection in FortiWeb 6.0 by the director of product marketing for FortiWeb Mark Byers (Fortinet blog, press release)
• Why and how digital transformation (DX) requires security transformation (SX) by EMEA Marketing Director Patrick Grillo (Fortinet blog)
• Observed malware trend from ransomware towards cryptojacking by John Maddison, SVP Products and Solutions at Fortinet (Fortinet blog)
• Thoughts by Steve Mulhearn, Director Enhanced Tech for UKI&DACH at Fortinet, on how 5G networks could change the threat landscape (Fortinet blog)
• Heads-up on current threat landscape by Derek Manky, Global Security Strategist at Fortinet, drawing a comparison from cybercriminals to magicians and illusionists of a century ago (Fortinet blog)

Outlook

• (de) Q2 Tech Bootcamp Hamburg on June 12 (registration link)
• (de) Q2 Tech Bootcamp Düsseldorf on June 14 (registration link)
• (de) Fortinet Tech Webinar am Freitag: "Use of Web APIs with FortiManager and FortiAnalyzer" on June 15 (registration link)
• (de) Fortinet Webinar: "Außenstellen-Anbindung - Einfach, schnell, sicher!" on June 15 (registration link)

* Disclaimer: This summary is based on best effort by the Swiss Fortinet SEs. While we try to get all relevant information of the week into this summary, we might miss some information as we collect it or other mistakes may happen. Therefore, don't base your decisions on this summary, but check the authoritative sources yourself.