Fortinet acquires Next DLP, strengthening its SASE solution. Next DLP’s solutions give organizations insights into document misuse by internal actors.
The acquisition brings the Reveal platform from start-up Next DLP into Fortinet’s hands. The platform shows how employees work with internal documents and whether they work securely. The platform does this locally on employees’ PCs. After installing the program, it measures when a file was created, how often the file location was changed and whether the content was changed after creation.
Insights and incident assistance
Security specialists find this information in a data log and get clues about how potentially dangerous a vulnerability is. The assessment is based on the MITRE Insider Threat Knowledge Base, a database of common hacking tactics.
Attacks can be further investigated with a dashboard in the cloud. On that platform, security specialists get help from XTND AI, a chatbot that automatically handles some standard tasks in the investigation process.
Danger of unknown remote workers
“Next DLP will significantly strengthen our data loss prevention capabilities, allowing customers to manage insider risk in SASE and endpoint deployments,” said Ken Xie, founder and CEO of Fortinet.
The recent event at KnowBe4 is a good example of a situation where Next DLP’s solutions can come in handy. At KnowBe4, a North Korean scammer managed to get hired as a Principal Software Engineer. The person in question scammed the email security specialist by pretending to be American via a stolen passport and with a fake photo. From day one, the new employee began running illegal stuff on the company laptop.
Also read: Scammers abuse AI to acquire IT jobs in key companies