Fortinet Enhances FortiRecon to Align with Continuous Threat Exposure Management (CTEM) Framework to Help Organizations Stay Ahead of Threats
Fortinet (NASDAQ: FTNT) has announced major enhancements to its FortiRecon platform, aligning it with the continuous threat exposure management (CTEM) framework. The upgraded platform introduces expanded internal attack surface monitoring, adversary-centric dark web intelligence, and security orchestration in a unified solution.
Key improvements include enhanced attack surface management with NVD severity ratings, advanced adversary-centric intelligence with bulk IOC downloads, strengthened brand protection features, and automated security orchestration capabilities. The platform integrates with Fortinet's AI-Driven SOC platform across the five CTEM framework pillars: scoping, discovery, prioritization, validation, and mobilization.
Notably, Fortinet was recognized as an Overall Leader in the KuppingerCole Leadership Compass for Attack Surface Management 2025, highlighting FortiRecon's operational readiness and broad integration capabilities.
Fortinet (NASDAQ: FTNT) ha annunciato importanti potenziamenti alla piattaforma FortiRecon, allineandola al framework di continuous threat exposure management (CTEM). L'aggiornamento introduce un monitoraggio ampliato della superficie di attacco interna, intelligence sul dark web focalizzata sugli avversari e funzionalità di orchestrazione della sicurezza in un'unica soluzione.
I miglioramenti principali includono un potenziato attack surface management con valutazioni di severità NVD, una intelligence avversaria avanzata con download massivo di IOC, funzioni rafforzate per la protezione del brand e capacità automatizzate di security orchestration. La piattaforma si integra con l'AI-Driven SOC di Fortinet coprendo i cinque pilastri del CTEM: scoping, discovery, prioritization, validation e mobilization.
Da sottolineare che Fortinet è stata riconosciuta come Overall Leader nel KuppingerCole Leadership Compass per l'Attack Surface Management 2025, evidenziando la prontezza operativa e le ampie capacità di integrazione di FortiRecon.
Fortinet (NASDAQ: FTNT) ha anunciado mejoras importantes en la plataforma FortiRecon, alineándola con el marco de continuous threat exposure management (CTEM). La versión mejorada incorpora monitoreo ampliado de la superficie de ataque interna, inteligencia del dark web centrada en los adversarios y orquestación de seguridad en una solución unificada.
Las mejoras clave incluyen un reforzado attack surface management con calificaciones de severidad NVD, inteligencia centrada en el adversario con descargas masivas de IOC, funcionalidades fortalecidas de protección de marca y capacidades automatizadas de security orchestration. La plataforma se integra con el AI-Driven SOC de Fortinet abarcando los cinco pilares del CTEM: scoping, discovery, prioritization, validation y mobilization.
Cabe destacar que Fortinet fue reconocida como Overall Leader en el KuppingerCole Leadership Compass para Attack Surface Management 2025, subrayando la preparación operativa y la amplia capacidad de integración de FortiRecon.
Fortinet (NASDAQ: FTNT)는 FortiRecon 플랫폼에 대한 주요 개선 사항을 발표하며 이를 연속 위협 노출 관리(CTEM) 프레임워크에 맞췄습니다. 업그레이드된 플랫폼은 내부 공격 표면 모니터링 확대, 공격자 중심의 다크웹 인텔리전스, 그리고 보안 오케스트레이션을 하나의 통합 솔루션으로 제공합니다.
주요 개선점으로는 NVD 심각도 평점을 포함한 향상된 attack surface management, 대량 IOC 다운로드가 가능한 고급 공격자 중심 인텔리전스, 강화된 브랜드 보호 기능 및 자동화된 security orchestration 역량이 있습니다. 이 플랫폼은 Fortinet의 AI-Driven SOC와 통합되어 CTEM의 다섯 기둥인 scoping, discovery, prioritization, validation, mobilization 전반을 지원합니다.
특히 Fortinet은 KuppingerCole의 Attack Surface Management 2025 리더십 컴퍼스에서 Overall Leader로 선정되어 FortiRecon의 운영 준비성과 폭넓은 통합 역량을 인정받았습니다.
Fortinet (NASDAQ: FTNT) a annoncé des améliorations majeures de sa plateforme FortiRecon, en l'alignant sur le cadre de continuous threat exposure management (CTEM). La plateforme mise à jour apporte un suivi étendu de la surface d'attaque interne, une intelligence dark web centrée sur les adversaires et de l'orchestration de sécurité dans une solution unifiée.
Parmi les améliorations clés figurent un attack surface management renforcé avec des cotes de gravité NVD, une intelligence axée sur l'adversaire avancée avec téléchargement massif d'IOC, des fonctionnalités renforcées de protection de la marque et des capacités automatisées d'orchestration de sécurité. La plateforme s'intègre à l'AI-Driven SOC de Fortinet et couvre les cinq piliers du CTEM : scoping, discovery, prioritization, validation et mobilization.
Il est notable que Fortinet a été reconnue comme Overall Leader dans le KuppingerCole Leadership Compass pour l'Attack Surface Management 2025, soulignant la préparation opérationnelle et la large capacité d'intégration de FortiRecon.
Fortinet (NASDAQ: FTNT) hat bedeutende Verbesserungen an der FortiRecon-Plattform angekündigt und sie an den Continuous Threat Exposure Management (CTEM)-Rahmen angepasst. Die aktualisierte Plattform bietet ein erweitertes Monitoring der internen Angriffsoberfläche, adversarienzentrierte Dark-Web-Intelligence und Security-Orchestrierung in einer einheitlichen Lösung.
Wesentliche Verbesserungen umfassen ein verbessertes Attack Surface Management mit NVD-Schweregradbewertungen, erweiterte adversary-centric Intelligence mit Bulk-IOC-Downloads, verstärkte Markenschutz-Funktionen sowie automatisierte Security Orchestration-Fähigkeiten. Die Plattform integriert sich in Fortinets AI-Driven SOC und deckt die fünf CTEM-Säulen ab: scoping, discovery, prioritization, validation und mobilization.
Bemerkenswert ist, dass Fortinet im KuppingerCole Leadership Compass für Attack Surface Management 2025 als Overall Leader anerkannt wurde, was die betriebliche Einsatzbereitschaft und die umfassenden Integrationsmöglichkeiten von FortiRecon unterstreicht.
- Enhanced platform capabilities aligned with CTEM framework
- Recognition as Overall Leader in KuppingerCole Leadership Compass 2025
- Integration with broader Fortinet Security Fabric tools
- Flexible deployment options through FortiFlex credits
- None.
Insights
Fortinet's FortiRecon platform upgrade significantly enhances its CTEM capabilities, potentially strengthening its competitive position in the growing attack surface management market.
Fortinet's FortiRecon platform enhancements represent a strategic expansion of their cybersecurity portfolio, now covering all five pillars of Gartner's Continuous Threat Exposure Management framework. This positions Fortinet to capitalize on a critical market trend, as Gartner predicts organizations using CTEM will be three times less likely to suffer breaches by 2026.
The upgraded platform introduces several high-value capabilities: expanded internal attack surface monitoring, adversary-centric dark web intelligence, and security orchestration - all unified in a single platform. The integration with Fortinet's AI-Driven SOC platform creates a comprehensive security ecosystem that addresses the growing problem of attack surface expansion and alert fatigue.
What's particularly valuable is FortiRecon's approach to vulnerability prioritization by combining standard NVD severity ratings with FortiRecon Active Exploitation severity ratings. This enables security teams to focus remediation efforts on vulnerabilities actively being exploited in the wild rather than wasting resources on theoretical vulnerabilities.
Fortinet's recent recognition as an Overall Leader in KuppingerCole's Leadership Compass for Attack Surface Management 2025 validates their technical approach. The availability through FortiFlex credits also creates a flexible adoption path for existing customers, potentially accelerating uptake.
This enhancement strengthens Fortinet's competitive position against pure-play attack surface management vendors and larger security platforms, particularly as organizations increasingly seek integrated security solutions rather than point products.
New features integrate attack surface management, threat intelligence, and security orchestration to help security teams reduce risk faster and more proactively
SUNNYVALE, Calif., Aug. 12, 2025 (GLOBE NEWSWIRE) --
News Summary
Fortinet® (NASDAQ: FTNT), the global cybersecurity leader driving the convergence of networking and security, today announced significant enhancements to the FortiRecon platform, evolving it into one of the industry’s most comprehensive solutions aligned to the continuous threat exposure management (CTEM) framework. The latest release introduces expanded internal attack surface monitoring, adversary-centric dark web intelligence, and security orchestration, all in a single, unified platform. These enhancements help organizations proactively identify and prioritize real-world exposures, validate risks like an attacker would, and accelerate response, ultimately reducing the likelihood and impact of breaches.
“CISOs and security teams are overwhelmed by growing attack surfaces and an endless stream of unprioritized alerts,” said Nirav Shah, Senior Vice President of Products and Solutions at Fortinet. “With the latest enhancements to FortiRecon, we’re giving organizations an attacker’s eye view of their internal and external exposures, backed by AI-powered threat intelligence from FortiGuard Labs, real-world validation, and automated response. This allows organizations to cut through the noise, focus on what matters most, and measurably reduce risks and vulnerabilities before attackers can exploit them.”
The announcement comes amid growing demand for exposure-driven security strategies as organizations struggle to manage expanding attack surfaces, alert fatigue, and fragmented security operations. According to Gartner®, “By 2026, organizations prioritizing their security investments based on a continuous exposure management program will be three times less likely to suffer from a breach.”¹
A Unified Platform for Continuous Threat Exposure Management
FortiRecon, in combination with its strong integration to the Fortinet AI-Driven Security Operations Center (SOC) platform, now delivers capabilities across the five pillars of the Gartner CTEM framework—scoping, discovery, prioritization, validation, and mobilization—enabling organizations to operationalize these pillars within a single, tightly integrated platform and drive coordinated remediation efforts across security and IT teams. The latest enhancements include:
- Attack surface management: Continuously monitors and delivers an adversary’s view of the organization’s internal and external digital attack surface. The latest release adds National Vulnerability Database (NVD) severity ratings, in addition to FortiRecon Active Exploitation severity ratings for faster and smarter patching.
- Adversary-centric intelligence: Provides actionable threat insights from dark web activity, ransomware intelligence, leaked credentials, vulnerabilities being exploited in the wild, and at-risk vendors. Enhancements include bulk indicators of compromise (IOC) downloads and stealer infection details, accelerating SOC workflows, and improving breach detection.
- Brand protection: Monitors for domain impersonation, rogue mobile apps, phishing campaigns, and executive targeting. FortiRecon Brand Protection uses proprietary algorithms to monitor, detect, and take down fake phishing domains, brand and executive impersonations, rogue mobile applications on multiple app stores, data leaks in code repos, open bucket exposures, and phishing campaigns, and helps protect executive online presence.
- Security orchestration: Leverages security orchestration and automated playbooks to investigate and respond to security threat findings. FortiRecon Security Orchestration reduces the time needed for responders to prioritize and take appropriate actions by automating and streamlining security workflows.
Existing FortiFlex customers may use their FortiFlex credits to deploy FortiRecon Cloud. FortiFlex offers usage-based licensing with the security industry's broadest catalog for customers with dynamic hybrid and multi-cloud environments and MSSPs. When purchased through major cloud marketplaces, FortiFlex can also help customers meet cloud committed spend obligations.
Industry Recognition and Customer Results
Fortinet was recently named an Overall Leader as well as a Market Leader and Innovation Leader in the KuppingerCole Leadership Compass for Attack Surface Management 2025. The report highlights the operational readiness of FortiRecon with broad support for CIS, ICS, IoT, and OT environments, and its integrations with the broader Fortinet Security Fabric tools such as FortiGate NGFW, FortiSOAR, FortiSIEM, and FortiDAST.
Supporting Quotes
“FortiRecon has elevated the way we deliver managed security services. It enables our teams to provide clients with continuous, contextualized risk insights not just alerts. We’re now able to prioritize remediation based on business impact, helping our customers reduce risk faster while demonstrating measurable security outcomes. It’s a key differentiator in how we build long-term trust and value.”
- Paul Cragg, CTO at Norm Cyber
Additional Resources
- Learn how FortiRecon can help advance your organization’s CTEM journey.
- Visit fortinet.com/trust to learn more about Fortinet innovation, collaboration partners, product security processes, and enterprise-grade products.
- Learn more about Fortinet's commitment to product security and integrity, including its responsible product development and vulnerability disclosure approach and policies.
- Learn about Fortinet’s free cybersecurity training, which includes broad cyber awareness and product training. The Fortinet Training Institute also provides training and certification through the Network Security Expert (NSE) Certification, Academic Partner, and Education Outreach programs.
- Learn more about FortiGuard Labs threat intelligence and research and Outbreak Alerts, which provide timely steps to mitigate breaking cybersecurity attacks.
- Learn more about Fortinet’s FortiGuard Security Services portfolio.
- Read about how Fortinet customers are securing their organizations.
- Follow Fortinet on X, LinkedIn, Facebook, and Instagram. Subscribe to Fortinet on our blog or YouTube.
¹ Gartner. How to Manage Cybersecurity Threats, Not Episodes, by Jeremy D’Hoinne. Gartner, 11 Oct. 2023.
About Fortinet
Fortinet (Nasdaq: FTNT) is a driving force in the evolution of cybersecurity and the convergence of networking and security. Our mission is to secure people, devices, and data everywhere, and today we deliver cybersecurity everywhere our customers need it with the largest integrated portfolio of over 50 enterprise-grade products. Well over half a million customers trust Fortinet's solutions, which are among the most deployed, most patented, and most validated in the industry. The Fortinet Training Institute, one of the largest and broadest training programs in the industry, is dedicated to making cybersecurity training and new career opportunities available to everyone. Collaboration with esteemed organizations from both the public and private sectors, including Computer Emergency Response Teams (CERTS), government entities, and academia, is a fundamental aspect of Fortinet’s commitment to enhance cyber resilience globally. FortiGuard Labs, Fortinet’s elite threat intelligence and research organization, develops and utilizes leading-edge machine learning and AI technologies to provide customers with timely and consistently top-rated protection and actionable threat intelligence. Learn more at https://www.fortinet.com, the Fortinet Blog, and FortiGuard Labs.
Copyright © 2025 Fortinet, Inc. All rights reserved. The symbols ® and ™ denote respectively federally registered trademarks and common law trademarks of Fortinet, Inc., its subsidiaries and affiliates. Fortinet’s trademarks include, but are not limited to, the following: Fortinet, the Fortinet logo, FortiGate, FortiOS, FortiGuard, FortiCare, FortiAnalyzer, FortiManager, FortiASIC, FortiClient, FortiCloud, FortiCore, FortiMail, FortiSandbox, FortiADC, FortiAgent, FortiAI, FortiAIOps, FortiAntenna, FortiAP, FortiAPCam, FortiAppSec, FortiAuthenticator, FortiBranchSASE, FortiCall, FortiCam, FortiCamera, FortiCarrier, FortiCART, FortiCASB, FortiCentral, FortiCNP, FortiConnect, FortiController, FortiConverter, FortiCSPM, FortiCWP, FortiDAST, FortiDATA, FortiDB, FortiDDoS, FortiDeceptor, FortiDeploy, FortiDevice, FortiDevSec, FortiDLP, FortiEdge, FortiEDR, FortiEndpoint, FortiExplorer, FortiExtender, FortiFirewall, FortiFlex, FortiFone, FortiGSLB, FortiGuest, FortiHypervisor, FortiInsight, FortiIsolator, FortiLAN, FortiLink, FortiMonitor, FortiNAC, FortiNDR, FortiPAM, FortiPenTest, FortiPhish, FortiPoint, FortiPoints, FortiPolicy, FortiPortal, FortiPresence, FortiProxy, FortiRecon, FortiRecorder, FortiSASE, FortiScanner, FortiSDNConnector, FortiSEC, FortiSIEM, FortiSMS, FortiSOAR, FortiSRA, FortiStack, FortiSwitch, FortiTelemetry, FortiTester, FortiToken, FortiTrust, FortiVoice, FortiWAN, FortiWeb, FortiWiFi, FortiWLC, FortiWLM, FortiXDR, Lacework FortiCNAPP, Linksys, Intelligent Mesh, Velop, Max-Stream, Performance Perfected and SECURITY FABRIC. Other trademarks belong to their respective owners. Fortinet has not independently verified statements or certifications herein attributed to third parties and Fortinet does not independently endorse such statements. Notwithstanding anything to the contrary herein, nothing herein constitutes a warranty, guarantee, contract, binding specification or other binding commitment by Fortinet or any indication of intent related to a binding commitment, and performance and other specification information herein may be unique to certain environments.
Media Contact: Fortinet, Inc. 408-235-7700 pr@fortinet.com Investor Contact: Fortinet, Inc. 408-235-7700 investors@fortinet.com Analyst Contact: Fortinet, Inc. 408-235-7700 analystrelations@fortinet.com
FAQ
What new features did Fortinet (FTNT) add to FortiRecon in August 2025?
How does FortiRecon align with the CTEM framework?
What recognition did Fortinet receive for FortiRecon in 2025?
How can customers access FortiRecon Cloud?
What are the key components of FortiRecon's brand protection features?
