Fortinet

Last updated

Fortinet, Inc.
Company type Public
Industry
Founded2000;26 years ago (2000)
Founders
Headquarters
Sunnyvale, California
,
U.S.
Key people
  • Ken Xie (CEO)
  • Michael Xie (CTO)
  • Keith Jensen (CFO)
Products
  • Fortinet Security Fabric
  • FortiGate NGFW
  • FortiGate enterprise
  • FortiGate carrier
  • FortiSwitch
  • FortiAP
  • FortiWeb
  • FortiSIEM
  • FortiSandbox
  • FortiClient
  • FortiManager
  • FortiAnalyzer
  • FortiEDR
  • FortiAuthenticator
  • FortiDeceptor
  • FortiNAC
  • FortiGate VM
  • FortiPAM
  • FortiCamera
  • FortiVoice
  • FortiMail
  • FortiSOAR
  • FortiADC
  • FortiCASB
  • FortiDDoS
  • FortiToken
  • FortiDLP
Services
RevenueIncrease2.svg US$5.96 billion (2024)
Increase2.svg US$1.80 billion (2024)
Increase2.svg US$1.75 billion (2024)
Total assets Increase2.svg US$9.76 billion (2024)
Total equity Increase2.svg US$1.49 billion (2024)
Number of employees
14,138 (2024)
Website fortinet.com
Footnotes /references
[1] [2]

Fortinet, Inc. is an American cybersecurity company headquartered in Sunnyvale, California. It develops and sells security products including firewalls, endpoint security and intrusion detection systems. Fortinet has offices in the US, Canada, and UK. [3]

Contents

Founded in 2000 by brothers Ken Xie and Michael Xie, the company's first and main product was FortiGate, a physical firewall. The company later added wireless access points, sandbox and messaging security. The company went public in November 2009. [4]

History

Early history

In 2000, Ken Xie and his brother Michael Xie co-founded Appligation, Inc., which they renamed ApSecure and finally Fortinet (from the phrase "Fortified Networks"). [5] Fortinet introduced its first product, FortiGate, in 2002, followed by anti-spam and anti-virus software. [6] [7]

The company raised $13 million in private funding from 2000 to early 2003. [6] Fortinet's first channel program was established in October 2003. [8] The company began distributing its products in Canada in December 2003 and in the UK in February 2004. [6] By 2004, Fortinet had offices in Asia, Europe, and North America. [9]

Growth and expansion

Fortinet became profitable in the third quarter of 2008. [10] According to market research firm IDC, by November 2009, Fortinet held over 15 percent of the unified threat management market. [11] Also in 2009, CRN Magazine 's survey-based annual report card placed Fortinet first in network security hardware, up from seventh in 2007. [12]

In November 2009, Fortinet had an initial public offering, opening on the NASDAQ Global Market under the ticker symbol FTNT. [13] By the end of the first day of trading, the company had raised $156 million. [14] The company later became listed on the NASDAQ Global Select Market, and became a component of the NASDAQ-100 index.[ citation needed ]

By 2010, Fortinet had $324 million in annual revenues [6] and held the largest share of the unified threat management market according to IDC. [15]

Recent history

In July 2014, Fortinet announced a technical certification program called the Network Security Expert (NSE) program. [16] In March 2016, Fortinet launched a Network Security Academy to help fill open cybersecurity jobs in the U.S. Fortinet donated equipment and provided information to universities to help train students for jobs in the field. [17] Also in 2016, Fortinet launched a program called FortiVet to recruit military veterans for cybersecurity jobs. [18]

In January 2017, it was announced that Philip Quade, a former member of the NSA, would become the company's chief information security officer. [19]

In 2019, Fortinet's FortiGate SD-WAN and Next Generation Firewall received a "Recommended" rating from NSS Labs. [20]

In September 2021, Fortinet pledged to train one million people in support of President Joe Biden's call to action to address the talent shortage in American cybersecurity. [21]

In March 2022, Fortinet announced the termination of operations in Russia. The company has stopped all sales, support, and professional services within Russia. [22] [23]

The same year, NetworkWorld reported that Fortinet had introduced AI and ML-based security services utilizing telemetry from its network. [24]

In June 2025, Fortinet was added to Investor's Business Daily's Big Cap 20 list of top-rated large-cap growth stocks. [25]

Acquisitions

Products and research

Products

Fortinet released its first product, FortiGate, a firewall, in 2002, followed by anti-spam and anti-virus software. [6] [7] As functions like anti-spam were added, they were made available in a single product along with the firewall and other functions. [15] FortiGate was updated later to use application-specific integrated circuit (ASIC) architecture. [44] The company has used ASIC in several of its products, including to support its SD-WAN features. [45] [46]

Initially, FortiGate was a physical, rack-mounted product but later became available as a virtual appliance that could run on virtualization platforms such as VMware vSphere.

In April 2016, Fortinet began building its Security Fabric architecture so multiple network security products could communicate as one platform. [47] Later that year, the company added Security Information and Event Management (SIEM) products. [48] In September 2016, the company announced it would integrate the SIEM products with the security systems of other vendors. [49]

In 2017, Fortinet announced the addition of switches, access points, analyzers, sandboxes and cloud capabilities to the Security Fabric, in addition to endpoints and firewalls. [50] [51] Later in 2017, Fortinet created a standalone subsidiary, Fortinet Federal, to develop cybersecurity products for government agencies. [52] Fortinet has received security effectiveness certifications through NSS Labs. [53]

FortiGate 6501F Fortinet FortiGate 6501F.png
FortiGate 6501F

In 2019, Fortinet grew to 21,000 WAN edge customers, according to a Gartner report. [54]

In February 2020, Fortinet released FortiAI, a threat-detection program that uses artificial intelligence. [55] [56] In July 2020, Fortinet launched multi-cloud SD-WAN. [57] That year, BT Security selected Fortinet and other Threat Alliance members as Critical Partners. [58]

Vulnerabilities and credential leaks

In September 2021, almost 500,000 login names and passwords for Fortinet VPN devices were published on a hacking forum. The credentials were allegedly scraped from devices vulnerable to a 2018 exploit (CVE-2018-13379). [59]

In January 2025, the credentials and configuration files of over 15,000 FortiGate devices were leaked on a hacking forum. [60] The data is believed to have been obtained from devices vulnerable to a 2022 exploit (CVE-2022–40684). [61]

In November 2025, a critical vulnerability (CVE-2025-64446, 9.1 CVSS) became public affecting FortiWeb Web Application Firewall [62] . The vulnerability allowed attackers to gain full control over the device by exploiting a path traversal vulnerability combined with an authentication bypass [63] .

Cybersecurity research

In 2005, Fortinet created the FortiGuard Labs internal security research team. [64]

By 2014, Fortinet had four research and development centers in Asia, as well as others in the US, Canada and France. [65]

In March 2014, Fortinet founded the Cyber Threat Alliance (CTA) with Palo Alto Networks in order to share security threat data across vendors. [66] It was later joined by McAfee and Symantec. [67] In 2015, the CTA published a white paper on the CryptoWall ransomware, which detailed how attackers obtained $325 million through ransoms paid by victims to regain access to their files. [68]

In April 2015, Fortinet provided threat intelligence to Interpol in order to help apprehend the ringleader of several online scams based in Nigeria. The scams, which resulted in compromise of business emails and CEO fraud, had cost one business over $15 million. [69] The following year, in March 2016, Fortinet and Cisco joined NATO in a data-sharing agreement to improve their information security capabilities. [70]

Fortinet researchers discovered a spyware that scammed victims by impersonating the IRS. [71] Also in 2017, researchers helped identify malware, called Rootnik, and ransomware, called MacRansom, that targeted Android and MacOS systems respectively. [72]

Controversies

In May 2004, Trend Micro filed a legal complaint against Fortinet, alleging the FortiGate product line violated their U.S. patent on server-based antivirus technology. Though the International Trade Commission initially ruled against Fortinet, [73] the Trend Micro patents at the center of the dispute were later declared invalid in 2010. [74]

In April 2005, a German court issued a preliminary injunction against Fortinet's UK subsidiary in relation to source code for its GPL-licensed elements. [75] [76] The dispute ended a month later after Fortinet agreed to make the source code available upon request. [77]

In October 2005, an OpenNet study suggested that the military government of Myanmar, which was under which at the time was subject to U.S. sanctions for human rights violations, had begun using Fortinet's FortiGuard system for internet censorship. Fortinet stated that their products are sold by third-party resellers and that they acknowledged US embargoes; [78] however, their sales director participated in a ceremony to deliver the firewall product to the prime minister. [79] [80]

In September 2019, Fortinet settled a whistleblower lawsuit regarding what the company has described as an "isolated incident" of sales of intentionally mislabeled Chinese-made equipment to U.S. government end users. [81] [82]

In 2023, Fortinet Fortiguard devices were revealed by Microsoft and members of the Five Eyes intelligence network to be the subject of a wide-ranging and ongoing cyberattack by a state-sponsored entity in China. [83]

In September 2024, reports surfaced of an unknown person going by the nickname "Fortibitch" posting to an unnamed hacking forum that they allegedly stole 440 gigabytes of data from Fortinet's Microsoft SharePoint server. [84] [85] Fortinet confirmed the data breach to Bleeping Computer and said that the data breach included "limited data related to a small number of Fortinet customers". [84] [85]

References

  1. "Fortinet Inc. 2024 Annual Report (Form 10-K)". U.S. Securities and Exchange Commission. February 24, 2025. pp. 9, 76–77.
  2. Greene, Tim (April 25, 2016). "New security fabric to unite Fortinet gear with that of other vendors". Network World. Archived from the original on April 26, 2024. Retrieved July 10, 2017.
  3. "Locate Fortinet's Offices throughout the world". Fortinet. Retrieved July 31, 2025.
  4. "VC-backed Fortinet has 4th best U.S. debut of '09". Reuters. November 18, 2009. Retrieved January 29, 2025.
  5. Kenneth Tam; Martín H. Hoz Salvador; Ken McAlpine; Rick Basile; Bruce Matsugu; Josh More (December 31, 2012). UTM Security with Fortinet: Mastering FortiOS. Newnes. pp. 16–17. ISBN   978-1-59749-977-4.
  6. 1 2 3 4 5 Hill, Karen (2012). International Directory of Company Histories:Fortinet. Vol. 128. St James Press. pp. 223–227. ISBN   978-1-55862-810-6.
  7. 1 2 "Fortinet UTM: Product Overview and Analysis". www.esecurityplanet.com. July 23, 2018. Retrieved November 12, 2018.
  8. Torode, Christina (October 24, 2003). "Fortinet Adds New Partner Program". CRN. Retrieved March 10, 2015.
  9. Natividad, Beverly (March 2, 2004). "Real-time firewalls preserve performance". BusinessWorld.
  10. Cowan, Lynn (November 19, 2006). "Security Security: Fortinet IPO Jumps 33%". The Wall Street Journal. p. C6.
  11. "Computer security co. Fortinet plans IPO this week". Seattle Times. November 17, 2009. Archived from the original on September 21, 2016. Retrieved March 13, 2015.
  12. DeMarzo, Robert (September 25, 2009). "Fortinet IPO: Love Of Services". CRN. Retrieved March 13, 2015.
  13. Kovar, Joseph F. "Fortinet Raises $156M in IPO | CRN". www.crn.com. Retrieved January 8, 2025.
  14. McMillan, Robert (November 18, 2009). "Security Vendor Fortinet Sparkles in IPO". IDG News. Archived from the original on September 27, 2016. Retrieved March 13, 2015.
  15. 1 2 Kaplan, Thomas (November 2010). "Fortinet's Shares Take Wild Ride on Deal/No Deal". DealBook. Retrieved December 10, 2018.
  16. Solomon, Howard (July 29, 2014). "New online IT training touted to help meet skills shortage". IT World Canada. Archived from the original on July 31, 2014. Retrieved March 14, 2015.
  17. "Intel, Fortinet, launch cybersecurity initiatives". San Jose Mercury News. March 22, 2016. Retrieved June 24, 2016.
  18. "Cybersecurity skills shortage: vendors step up to address workforce shortfall | Verdict". www.verdict.co.uk. May 30, 2018. Retrieved December 10, 2018.
  19. "Exclusive: Ex-NSA Cyber Boss Named Fortinet Information Security Chief". Fortune. Retrieved December 10, 2018.
  20. Auger, Steve (August 8, 2019). "Fortinet: A Strong Buy (NASDAQ:FTNT)". Seeking Alpha. Retrieved November 18, 2020.
  21. Barth, Bradley (September 10, 2021). "Answering Biden's call, tech and cyber companies commit to more career training". SC Media. Retrieved December 8, 2021.
  22. "Fortinet Talks Growth with Channel Partners, Ceases Russia Operations". www.channelfutures.com. Retrieved February 24, 2025.
  23. "Over 1,000 Companies Have Curtailed Operations in Russia—But Some Remain | Yale School of Management". som.yale.edu. Retrieved February 24, 2025.
  24. Cooney, Michael (April 4, 2022). "Fortinet tightens integration of enterprise security, networking controls". Network World. Retrieved March 10, 2023.
  25. Detar, James (June 10, 2025). "Toast, Fortinet Among Technology Stocks New To IBD Lists". Investors. Retrieved June 19, 2025.
  26. McMillan, Robert (June 17, 2008). "Fortinet buys assets of security vendor IPLocks". IDG News Service. Retrieved March 14, 2015.
  27. Kotadia, Munir (August 20, 2009). "Woven Systems technology lives on with Fortinet". IT News. Retrieved March 13, 2015.
  28. Davis, Jim (December 17, 2012). "Did Fortinet acquire XDN in a bid to add more cache to its portfolio?". 451 Group. Retrieved March 14, 2015.
  29. King, Rachel (March 22, 2013). "Fortinet buying Coyote Point for application delivery model". ZDNet. Retrieved March 13, 2015.
  30. Kuranda, Sarah (May 27, 2015). "Fortinet Dives Deep Into Enterprise Secure Wireless Market With Meru Networks Acquisition". CRN. Retrieved June 10, 2015.
  31. Kuranda, Sarah (June 7, 2016). "Fortinet Dives Into SIEM Market With $28M Acquisition Of AccelOps". CRN. Retrieved June 16, 2016.
  32. Novinson, Michael. "Fortinet Snaps Up IoT-Focused Security Firm Bradford Networks". CRN. Retrieved December 10, 2018.
  33. Novinson, Michael (October 23, 2018). "Fortinet Buys Threat Analytics Startup ZoneFox To Fight Insider Threats". CRN. Retrieved April 27, 2020.
  34. "Fortinet Acquires Endpoint Security Firm enSilo | SecurityWeek.Com". www.securityweek.com. October 28, 2019. Retrieved April 27, 2020.
  35. Arghire, Ionut (December 13, 2019). "Fortinet Acquires SOAR Platform Provider CyberSponse". Security Week. Retrieved April 27, 2020.
  36. "Fortinet Acquires OPAQ Networks". July 21, 2020. Retrieved July 22, 2020.
  37. "Fortinet : Acquires Application Security Innovator Sken.ai to Accelerate DevSecOps CRN". www.crn.com. December 8, 2020. Retrieved February 4, 2022.
  38. Michael Novinson (March 20, 2022). "Fortinet Acquires Cloud And Network Security Startup ShieldX". CRN .
  39. "Fortinet : Acquires Application Security Innovator Sken.ai to Accelerate DevSecOps MarketScreener.Com". www.marketscreener.com. July 8, 2021. Retrieved February 4, 2022.
  40. Alspach, Kyle. "Fortinet Completes Acquisition Of Former Cloud Security Unicorn Lacework". www.crn.com. Retrieved December 3, 2024.
  41. Cser, Andras (June 12, 2024). "Fortinet Acquires Lacework". Forrester. Retrieved April 2, 2025.
  42. "Fortinet acquires data security company Next DLP". Yahoo Finance. August 14, 2024. Retrieved August 14, 2024.
  43. Coyle, Pat (May 23, 2025). "Fortinet acquires Everest Networks, betting on stadium Wi-Fi - But is it too late?". Stadium Tech Report. Retrieved November 5, 2025.
  44. Kovar, Joseph F. (February 6, 2018). "Fortinet CEO Xie Says Company Primed For Growth, Touts New Third-Gen Firewall Appliance And FortiGate Virtual Machine". CRN. Retrieved December 10, 2018.
  45. "Fortinet CEO: SD-Wan, Edge, Automation Key to Next-Gen Security". February 28, 2020. Retrieved April 27, 2020.
  46. "New ASIC bolsters Fortinet SD-WAN performance". Tech Target.
  47. Greene, Tim (April 25, 2016). "New security fabric to unite Fortinet gear with that of other vendors". Network World. Archived from the original on April 26, 2024. Retrieved January 24, 2019.
  48. Gagliordi, Natalie (June 7, 2016). "Fortinet acquires security analytics firm AccelOps". ZDNet. Retrieved June 16, 2016.
  49. "Fortinet Introduces Partner Program to Integrate Its Security Fab". September 27, 2016. Retrieved January 14, 2019.
  50. Kuranda, Sarah (January 10, 2017). "CRN Exclusive: Fortinet Launches New FortiOS, Security Operations Solution". CRN. Retrieved December 20, 2018.
  51. Kuranda, Sarah (April 11, 2017). "Fortinet Extends Security Fabric To The Cloud, Creating New Cloud Security Opportunities For Partners". CRN. Retrieved December 21, 2018.
  52. Wilkers, Ross (May 15, 2017). "Fortinet unveils new federal arm". Washington Technology. Retrieved July 5, 2017.
  53. "Quality of Experience is What Distinguishes SD-WAN Products, Says". SDxCentral. August 9, 2018. Retrieved December 20, 2018.
  54. "Fortinet Leapfrogs Cisco With 21,000 SD-WAN Customers - SDxCentral". SDxCentral. December 17, 2019. Retrieved November 18, 2020.
  55. Mann, Tobias (February 24, 2020). "Fortinet Forges FortiAI Security Appliance". SDX Central. Retrieved April 27, 2020.
  56. "Fortinet expands AI security range with FortiAI". Channel Pro. Retrieved April 27, 2020.
  57. "Fortinet Debuts Multi-Cloud SD-WAN - SDxCentral". SDxCentral. July 14, 2020. Retrieved November 18, 2020.
  58. Raywood, Dan (August 27, 2020). "BT Security Announces Vendor Partners to Simplify and Strengthen Protection". Infosecurity Magazine. Retrieved November 18, 2020.
  59. Abrams, Lawrence (September 8, 2021). "Hackers leak passwords for 500,000 Fortinet VPN accounts". Bleeping Computer . Retrieved January 21, 2025.
  60. Kovacs, Eduard (January 16, 2025). "Data From 15,000 Fortinet Firewalls Leaked by Hackers". SecurityWeek. Retrieved February 24, 2025.
  61. Abrams, Lawrence (January 15, 2025). "Hackers leak configs and VPN credentials for 15,000 FortiGate devices". Bleeping Computer . Retrieved January 21, 2025.
  62. Kroon, John de (November 17, 2025). "Kwetsbaarheid in Fortinet FortiWeb laat aanvallers firewall overnemen".
  63. "When The Impersonation Function Gets Used To Impersonate Users (Fortinet FortiWeb Auth. Bypass CVE-2025-64446)". watchTowr Labs. November 14, 2025.
  64. "Comparing the best NGFWs on the market". SearchSecurity. Retrieved July 15, 2016.
  65. Yu, Eileen (August 27, 2014). "Fortinet establishes R&D lab in Singapore".
  66. "Battling ransomware a priority for cybersecurity company". Santa Cruz Sentinel. March 21, 2016. Retrieved December 20, 2018.
  67. Albanesius, Chloe. "Obama Wants Tech Firms to Alert Feds to Cyber Threats" . Retrieved March 13, 2015.
  68. "Why Cisco, McAfee Say Security Vendors Must Share Threat Intel to". December 19, 2017. Retrieved January 14, 2019.
  69. "Exclusive: Kingpin Behind Suspected $60 Million Online Scams Nabbed". Fortune. Retrieved December 10, 2018.
  70. "Cisco, Fortinet cosy up to NATO for infosharing" . Retrieved December 10, 2018.
  71. Barth, Bradley (April 13, 2017). "SC Exclusive: Spyware disguises itself as IRS tax notification". SC Media. Archived from the original on April 15, 2017. Retrieved July 10, 2017.
  72. Dellinger, AJ (June 12, 2017). "New Ransomware and Malware Attack on Macs, Macos Allows Hackers to Pay to Use". Newsweek. Retrieved July 10, 2017.
  73. Gross, Grant (May 13, 2005). "Judge rules for Trend Micro in Fortinet patent case". Infoworld. Retrieved March 11, 2015.
  74. Shimel, Alan (April 12, 2011). "The Patent That Refuses To Die". Network World. Retrieved March 14, 2015.
  75. Galli, Peter (May 14, 2005). "Fortinet Under Fire for Allegedly Violating GPL Terms". eWeek. Retrieved March 11, 2015.
  76. Marson, Ingrid (April 14, 2005). "Fortinet accused of GPL violation". ZDNet. Retrieved March 11, 2015.
  77. Marson, Ingrid (April 26, 2005). "Fortinet settles GPL violation suit". CNET. Archived from the original on December 11, 2019. Retrieved February 1, 2026.
  78. Zeller, Tom (October 12, 2005). "Study Says Software Makers Supply Tools to Censor Web". The New York Times. Retrieved March 15, 2015.
  79. "Prime Minister attends ceremony to introduce Fortinet Antivirus Firewall". New Light Of Myanmar. May 16, 2004. Archived from the original on February 23, 2006.
  80. "Internet Filtering in Burma in 2005: A Country Study" (PDF). OpenNet Initiative. October 2005.
  81. Townsend, Kevin (April 17, 2019). "Fortinet Settles Whistleblower Case for $545,000". Securityweek. Retrieved September 11, 2019.
  82. Stone, Jeff (April 16, 2019). "Fortinet settles charges of selling intentionally mislabeled Chinese-made tech to U.S. military". Cyberscoop. Retrieved September 11, 2019.
  83. Goodin, Dan (May 24, 2023). "Chinese state hackers infect critical infrastructure throughout the US and Guam". Ars Technica.
  84. 1 2 Abrams, Lawrence (September 12, 2024). "Fortinet confirms data breach after hacker claims to steal 440GB of files". BleepingComputer. Retrieved September 14, 2024.
  85. 1 2 Alspach, Kyle. "Fortinet: Breach Of Cloud Environment Impacts 'Small Number' Of Customers". www.crn.com. Retrieved February 24, 2025.

Further reading

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.